Kontrola logu

Zpráva

#16 Příspěvek od **JaRon** » 02 čer 2025 19:44

Pokial by si bol spravne pouzil fixlist, tak hola by tam uz nestrasil

darko77 · #17 Příspěvek od **darko77** » 02 čer 2025 21:08

co sem udelal spatne ? postupoval jsem podle planu

ulozeny soubor sem na plose ulozil vedle programu vypnul antivir dal fix, potom se restartoval pocitac a nasledne sem zadal scan a ten sem hodil sem na forum

darko77 · #18 Příspěvek od **darko77** » 02 čer 2025 21:15

ted sem nasel soubor na plose :

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-06-2025
Ran by uživatel pc (02-06-2025 20:11:58)
Running from C:\Users\uživatel pc\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5854 (X64) (2021-05-02 17:52:34)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4258462134-2307798972-4277770657-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4258462134-2307798972-4277770657-503 - Limited - Disabled)
Guest (S-1-5-21-4258462134-2307798972-4277770657-501 - Limited - Disabled)
uživatel pc (S-1-5-21-4258462134-2307798972-4277770657-1002 - Administrator - Enabled) => C:\Users\uživatel pc
WDAGUtilityAccount (S-1-5-21-4258462134-2307798972-4277770657-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ANT Drivers Installer x64 (HKLM\...\{B76E8AFF-5D89-46BC-B7FF-CA08E3E1DE31}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Brother MFL-Pro Suite DCP-J4120DW (HKLM-x32\...\{7FC49664-DAA4-4E7C-ADD0-614ABB43691B}) (Version: 1.0.5.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.32 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.23.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Elevated Installer (HKLM-x32\...\{2A864666-3E45-482E-8663-AE9564E948B2}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{99E8379D-E022-4B19-BE4B-A27D04B454DD}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{a5eddcac-28f7-4d47-8bac-e7bf2d393a76}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM\...\{55D919B1-E2BB-3FAE-8D27-8B0E0E0F3A90}) (Version: 136.0.7103.114 - Google LLC)
Hola VPN 1.242.686 (HKLM\...\Hola) (Version: 1.242.686 - Hola VPN Ltd.) <==== ATTENTION
jetAudio Basic (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.1.0 - COWON)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Access MUI (Czech) 2013 (HKLM-x32\...\{90150000-0015-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Czech) 2013 (HKLM-x32\...\{90150000-0090-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\{E14BC6FB-FC4E-32F1-B645-8C4EDA07C8BB}) (Version: 136.0.3240.92 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.92 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Czech) 2013 (HKLM-x32\...\{90150000-0016-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Czech) 2013 (HKLM-x32\...\{90150000-00BA-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Czech) 2013 (HKLM-x32\...\{90150000-0044-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (Czech) 2013 (HKLM-x32\...\{90150000-012B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation)
Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2013 (HKLM-x32\...\{90150000-00E1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2013 (HKLM-x32\...\{90150000-00E2-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing (Czech) 2013 (HKLM-x32\...\{90150000-002C-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2013 (HKLM\...\{90150000-002A-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM-x32\...\{90150000-006E-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Czech) 2013 (HKLM-x32\...\{90150000-00A1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2013 (HKLM-x32\...\{90150000-001A-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2013 (HKLM-x32\...\{90150000-0018-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2013 (HKLM-x32\...\{90150000-0019-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34433 (HKLM-x32\...\{e7802eac-3305-4da0-9378-e55d1ed05518}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34433 (HKLM-x32\...\{84E3E712-6343-484B-8B6C-9F145F019A70}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34433 (HKLM-x32\...\{C2BB95AA-90F3-4891-81C1-A7E565BB836C}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Word MUI (Czech) 2013 (HKLM-x32\...\{90150000-001B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 132.0.2 (x64 cs)) (Version: 132.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 132.0.2 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
ScreenHunter 7.0 Free (HKLM-x32\...\ScreenHunter 7.0 Free_is1) (Version: 7.0.349 - Wisdom Software Inc.)
STORMWARE POHODA Start CZ (HKLM-x32\...\{EDA3447F-82D0-41B7-8490-3D3F99B5761F}) (Version: 13104.6 - STORMWARE)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WhatsApp (Outdated) (HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\WhatsApp) (Version: 2.2319.9 - WhatsApp)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-10] ()
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-05-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-05-02] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-06] (Skype)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-12] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-07] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-07] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-07] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-07] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2013-05-09] (JetAudio) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-07] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2013-05-09] (JetAudio) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-03-23 02:49 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-09-09 18:23 - 2016-04-26 13:10 - 000116908 _____ () [File not signed] C:\Program Files (x86)\ScreenHunter 7.0 Free\libgcc_s_dw2-1.dll
2020-03-23 02:49 - 2014-06-16 16:45 - 000137728 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 000083968 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 017955328 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 000082944 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\hola.org -> hxxp://hola.org

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2022-01-11 20:21 - 2022-01-11 20:22 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel pc\Desktop\PC + NET\NEW NTB\Wallpapers\black.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter -> athw10x.sys
Ethernet 4: TP-LINK Gigabit Ethernet USB Adapter -> rtux64w10.sys
Ethernet: Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30) -> L1C63x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "hola"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\StartupApproved\Run: => "GarminExpress"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C48D7FDF-C843-4FB5-ACE9-7A27F6D5CEBD}] => (Allow) LPort=1688
FirewallRules: [{4A94FBAB-A907-4CAE-82F4-A783AE8FCF9E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{094BE427-7273-4E94-827D-3172F7778EEB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E99BC289-CDFC-4972-AAA5-48FD27BE41C6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBF52300-E0CE-4D75-ABA6-AB3621028147}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{732A6B31-2467-433C-9470-980F5E22572A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{787572E2-0B0C-4D77-A8C8-22D67B24EAC8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{769FBAFC-CB64-43F4-A921-5BF7055D05D5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{C7CC05CE-DCCD-43D8-9559-813973B5D7C1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{D9A3E53C-923D-48D0-81F6-60350E4B84BE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0810A483-E4FD-4193-AA0D-8A607737697A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

13-05-2025 22:49:01 Instalační služba modulů systému Windows
24-05-2025 08:30:25 Naplánovaný kontrolní bod
01-06-2025 00:45:40 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (06/02/2025 07:22:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (06/02/2025 07:22:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/20/2025 06:14:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.5794, časové razítko: 0x6bc7e04d
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.19041.5848, časové razítko: 0xe26ccbed
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000003d2858
ID chybujícího procesu: 0x3670
Čas spuštění chybující aplikace: 0x01dbc98a753615c1
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 1d19905f-6915-47fe-939b-652ae7f11304
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: ShellFeedsUI

Error: (05/19/2025 02:10:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/14/2025 01:42:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (05/14/2025 01:42:52 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/13/2025 08:17:06 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (05/13/2025 08:17:06 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

System errors:
=============
Error: (06/02/2025 08:10:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/02/2025 08:10:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (06/02/2025 08:07:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (06/02/2025 08:07:47 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (06/02/2025 08:07:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Zabezpečení Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (06/02/2025 08:07:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (06/02/2025 08:07:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (06/02/2025 08:07:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Conexant SmartAudio service byla neočekávaně ukončena. Tento stav nastal již 1krát.

CodeIntegrity:
===============
Date: 2025-05-15 15:12:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-10-09 19:30:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 5ECN41WW(V4.00) 12/20/2012
Motherboard: LENOVO Product Name
Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentage of memory in use: 37%
Total physical RAM: 8094.35 MB
Available physical RAM: 5060.8 MB
Total Virtual: 11166.35 MB
Available Virtual: 8332.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.72 GB) (Free:113.43 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS

\\?\Volume{52a83a79-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{52a83a79-0000-0000-0000-60123a000000}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 52A83A79)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=611 MB) - (Type=27)

==================== End of Addition.txt =======================

#19 Příspěvek od **JaRon** » 02 čer 2025 21:20

Po akcii ak bola uspesna vznikol fixlog, ten vloz
Ak ho nenajdes, odinstaluj FW hola

darko77 · #20 Příspěvek od **darko77** » 02 čer 2025 22:06

spatne jsem se dival, je tam fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 01-06-2025
Ran by uživatel pc (02-06-2025 22:11:34) Run:2
Running from C:\Users\uživatel pc\Desktop
Loaded Profiles: uživatel pc
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

(services.exe ->) (HOLA VPN LTD -> Hola Networks Ltd.) C:\Program Files\Hola\app\hola_svc.exe
(services.exe ->) (HOLA VPN LTD -> Hola Networks Ltd.) C:\Program Files\Hola\app\hola_updater.exe

HKLM\...\Run: [hola] => C:\Program Files\Hola\app\hola.exe [4036328 2025-05-04] (HOLA VPN LTD -> Hola Networks Ltd.) <==== ATTENTION

HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\MountPoints2: {1f142ccf-a9fb-11ec-8707-801f02d61c00} - "E:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\MountPoints2: {4d768b2a-80c4-11ee-873a-801f02d61c00} - "E:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\MountPoints2: {82fddd72-570a-11ee-8736-801f02d61c00} - "E:\HonorSuiteOnlineInstaller.exe"

HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

Task: {5915F136-78E7-4560-9FCE-A6A7861F68F9} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4258462134-2307798972-4277770657-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File) <==== ATTENTION
Task: {C4549D5A-E893-48EB-9613-DD66D5A956EE} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4258462134-2307798972-4277770657-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION

R2 hola_svc; C:\Program Files\Hola\app\hola_svc.exe [24282856 2025-05-04] (HOLA VPN LTD -> Hola Networks Ltd.) <==== ATTENTION
R2 hola_updater; C:\Program Files\Hola\app\hola_updater.exe [19387616 2023-11-12] (HOLA VPN LTD -> Hola Networks Ltd.) <==== ATTENTION
R3 luminati_net_updater_win_hola_org; C:\Program Files\hola\app\net_updater64.exe [10262512 2025-04-21] (Bright Data Ltd -> BrightData Ltd. (certified)) <==== ATTENTION

S3 AX88179A; \SystemRoot\System32\DriverStore\FileRepository\netax88179x_178a_772d.inf_amd64_d631bb1c6818c16d\ax88179x_178a_772d.sys [X]
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]

CloseProcesses:

EmptyTemp:

End
*****************

C:\Program Files\Hola\app\hola_svc.exe => No running process found
C:\Program Files\Hola\app\hola_updater.exe => No running process found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\hola" => not found
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1f142ccf-a9fb-11ec-8707-801f02d61c00} => not found
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4d768b2a-80c4-11ee-873a-801f02d61c00} => not found
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{82fddd72-570a-11ee-8736-801f02d61c00} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5915F136-78E7-4560-9FCE-A6A7861F68F9}" => not found
"C:\WINDOWS\System32\Tasks\OneDrive Reporting Task-S-1-5-21-4258462134-2307798972-4277770657-1002" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Reporting Task-S-1-5-21-4258462134-2307798972-4277770657-1002" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4549D5A-E893-48EB-9613-DD66D5A956EE}" => not found
"C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4258462134-2307798972-4277770657-1002" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-4258462134-2307798972-4277770657-1002" => not found
hola_svc => service not found.
hola_updater => service not found.
luminati_net_updater_win_hola_org => service not found.
AX88179A => service not found.
intaud_WaveExtensible => service not found.
Processes closed successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 786432 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12717979 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 136 B
Edge => 0 B
Chrome => 231580028 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
defaultuser0 => 3888 B
uživatel pc => 69884 B

RecycleBin => 0 B
EmptyTemp: => 233.8 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 22:11:45 ====

darko77 · #21 Příspěvek od **darko77** » 02 čer 2025 22:38

mam otevreno 8 webovek a notebook skoro nejede, ventilator jede na maximum a nevypina

#22 Příspěvek od **JaRon** » 03 čer 2025 09:35

Pokus sa odinstalovat FW Hola
Ak sa nepodari, vloz aktualne logy frst+additional - napisem aktualny fixlist

darko77 · #23 Příspěvek od **darko77** » 04 čer 2025 13:31

odebral jsem program HOLA, kde se dá overit ze mi v notebooku nezustalo z programu vubec nic ?

jinak webovky se nacitaji porad pomalu i kdyz rychlost internetu je dostacujici

#24 Příspěvek od **JaRon** » 04 čer 2025 13:41

Vloz aktualne logy frst+additional - docistime

darko77 · #25 Příspěvek od **darko77** » 06 čer 2025 15:15

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-06-2025
Ran by uživatel pc (06-06-2025 16:12:26)
Running from C:\Users\uživatel pc\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5854 (X64) (2021-05-02 17:52:34)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4258462134-2307798972-4277770657-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4258462134-2307798972-4277770657-503 - Limited - Disabled)
Guest (S-1-5-21-4258462134-2307798972-4277770657-501 - Limited - Disabled)
uživatel pc (S-1-5-21-4258462134-2307798972-4277770657-1002 - Administrator - Enabled) => C:\Users\uživatel pc
WDAGUtilityAccount (S-1-5-21-4258462134-2307798972-4277770657-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ANT Drivers Installer x64 (HKLM\...\{B76E8AFF-5D89-46BC-B7FF-CA08E3E1DE31}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.5.10141.2799 - Gen Digital Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Brother MFL-Pro Suite DCP-J4120DW (HKLM-x32\...\{7FC49664-DAA4-4E7C-ADD0-614ABB43691B}) (Version: 1.0.5.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.32 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.23.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Elevated Installer (HKLM-x32\...\{2A864666-3E45-482E-8663-AE9564E948B2}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{99E8379D-E022-4B19-BE4B-A27D04B454DD}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{a5eddcac-28f7-4d47-8bac-e7bf2d393a76}) (Version: 7.1.2.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM\...\{55D919B1-E2BB-3FAE-8D27-8B0E0E0F3A90}) (Version: 137.0.7151.69 - Google LLC)
Hola VPN 1.242.686 (HKLM\...\Hola) (Version: 1.242.686 - Hola VPN Ltd.) <==== ATTENTION
jetAudio Basic (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.1.0 - COWON)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Access MUI (Czech) 2013 (HKLM-x32\...\{90150000-0015-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Czech) 2013 (HKLM-x32\...\{90150000-0090-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\{E14BC6FB-FC4E-32F1-B645-8C4EDA07C8BB}) (Version: 137.0.3296.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.92 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Czech) 2013 (HKLM-x32\...\{90150000-0016-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Czech) 2013 (HKLM-x32\...\{90150000-00BA-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Czech) 2013 (HKLM-x32\...\{90150000-0044-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (Czech) 2013 (HKLM-x32\...\{90150000-012B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation)
Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2013 (HKLM-x32\...\{90150000-00E1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2013 (HKLM-x32\...\{90150000-00E2-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing (Czech) 2013 (HKLM-x32\...\{90150000-002C-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2013 (HKLM\...\{90150000-002A-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM-x32\...\{90150000-006E-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Czech) 2013 (HKLM-x32\...\{90150000-00A1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2013 (HKLM-x32\...\{90150000-001A-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2013 (HKLM-x32\...\{90150000-0018-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2013 (HKLM-x32\...\{90150000-0019-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34433 (HKLM-x32\...\{e7802eac-3305-4da0-9378-e55d1ed05518}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34433 (HKLM-x32\...\{84E3E712-6343-484B-8B6C-9F145F019A70}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34433 (HKLM-x32\...\{C2BB95AA-90F3-4891-81C1-A7E565BB836C}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Word MUI (Czech) 2013 (HKLM-x32\...\{90150000-001B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 132.0.2 (x64 cs)) (Version: 132.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 132.0.2 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
ScreenHunter 7.0 Free (HKLM-x32\...\ScreenHunter 7.0 Free_is1) (Version: 7.0.349 - Wisdom Software Inc.)
STORMWARE POHODA Start CZ (HKLM-x32\...\{EDA3447F-82D0-41B7-8490-3D3F99B5761F}) (Version: 13104.6 - STORMWARE)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WhatsApp (Outdated) (HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\WhatsApp) (Version: 2.2319.9 - WhatsApp)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-10] ()
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-09] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-05-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-05-02] (Microsoft Corporation) [MS Ad]
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-05] (Microsoft Corporation)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-06] (Skype)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2522.2.0_x64__cv1g1gvanyjgm [2025-06-05] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2013-05-09] (JetAudio) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2013-05-09] (JetAudio) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-03-23 02:49 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-09-09 18:23 - 2016-04-26 13:10 - 000116908 _____ () [File not signed] C:\Program Files (x86)\ScreenHunter 7.0 Free\libgcc_s_dw2-1.dll
2020-03-23 02:49 - 2014-06-16 16:45 - 000137728 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 000083968 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 017955328 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2020-03-23 02:49 - 2014-06-16 17:03 - 000082944 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\hola.org -> hxxp://hola.org

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2022-01-11 20:21 - 2022-01-11 20:22 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4258462134-2307798972-4277770657-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel pc\Desktop\PC + NET\NEW NTB\Wallpapers\black.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter -> athw10x.sys
Ethernet 4: TP-LINK Gigabit Ethernet USB Adapter -> rtux64w10.sys
Ethernet: Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30) -> L1C63x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "hola"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\StartupApproved\Run: => "GarminExpress"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C48D7FDF-C843-4FB5-ACE9-7A27F6D5CEBD}] => (Allow) LPort=1688
FirewallRules: [{4A94FBAB-A907-4CAE-82F4-A783AE8FCF9E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{094BE427-7273-4E94-827D-3172F7778EEB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E99BC289-CDFC-4972-AAA5-48FD27BE41C6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBF52300-E0CE-4D75-ABA6-AB3621028147}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{732A6B31-2467-433C-9470-980F5E22572A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{787572E2-0B0C-4D77-A8C8-22D67B24EAC8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{769FBAFC-CB64-43F4-A921-5BF7055D05D5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{C7CC05CE-DCCD-43D8-9559-813973B5D7C1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{0810A483-E4FD-4193-AA0D-8A607737697A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1688AFE4-D1E6-4990-B8CE-A367CA5FA910}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

13-05-2025 22:49:01 Instalační služba modulů systému Windows
24-05-2025 08:30:25 Naplánovaný kontrolní bod
01-06-2025 00:45:40 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (06/03/2025 12:54:58 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: DESKTOP-M24SGA5)
Description: Microsoft.Windows.Photos_8wekyb3d8bbwe-2147023878

Error: (06/02/2025 07:22:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (06/02/2025 07:22:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/20/2025 06:14:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.5794, časové razítko: 0x6bc7e04d
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.19041.5848, časové razítko: 0xe26ccbed
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000003d2858
ID chybujícího procesu: 0x3670
Čas spuštění chybující aplikace: 0x01dbc98a753615c1
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: 1d19905f-6915-47fe-939b-652ae7f11304
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: ShellFeedsUI

Error: (05/19/2025 02:10:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/14/2025 01:42:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (05/14/2025 01:42:52 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (05/13/2025 08:17:06 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

System errors:
=============
Error: (06/02/2025 10:14:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/02/2025 10:14:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Zabezpečení Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Conexant SmartAudio service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (06/02/2025 10:11:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AtherosSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.

CodeIntegrity:
===============
Date: 2025-06-05 22:08:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-10-09 19:30:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 5ECN41WW(V4.00) 12/20/2012
Motherboard: LENOVO Product Name
Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentage of memory in use: 38%
Total physical RAM: 8094.35 MB
Available physical RAM: 4967.91 MB
Total Virtual: 11166.35 MB
Available Virtual: 7527.21 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.72 GB) (Free:109.92 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS

\\?\Volume{52a83a79-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{52a83a79-0000-0000-0000-60123a000000}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 52A83A79)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=611 MB) - (Type=27)

==================== End of Addition.txt =======================

darko77 · #26 Příspěvek od **darko77** » 06 čer 2025 15:15

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-06-2025
Ran by uživatel pc (administrator) on DESKTOP-M24SGA5 (LENOVO 20150) (06-06-2025 16:09:30)
Running from C:\Users\uživatel pc\Desktop\FRST64.exe
Loaded Profiles: uživatel pc
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5854 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(explorer.exe ->) (Wisdom Software Inc. -> Wisdom Software Inc.) C:\Program Files (x86)\ScreenHunter 7.0 Free\ScreenHunter7Free.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2522.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5853_none_7de3a0ec7cad0695\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [601944 2015-08-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [779000 2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1944576 2013-03-07] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [570408 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45368112 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31046640 2020-08-20] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\137.0.7151.69\Installer\chrmstp.exe [2025-06-06] (Google LLC -> Google LLC)
Startup: C:\Users\uživatel pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ScreenHunter 7.0 Free.lnk [2019-09-09]
ShortcutTarget: ScreenHunter 7.0 Free.lnk -> C:\Program Files (x86)\ScreenHunter 7.0 Free\ScreenHunter7Free.exe (Wisdom Software Inc. -> Wisdom Software Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {338DD168-F560-445C-A091-4C97AD59BE87} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {DFC1B0A1-DD76-442B-8211-3BFC46B27667} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8839472 2025-05-20] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {50E92ECC-918A-4090-87CC-7F31A966BD82} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5372152 2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7C63475D-5F93-4E8D-8A1D-5381BB3FF474} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {4E585A54-D60A-4F3A-B65F-1D850368EC07} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {83E60354-A522-4A26-858E-BB36A9B333A6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "c3f2f24a-91c3-4e42-b60d-e13f36756c9f" --version "6.32.0.11432" --silent
Task: {7EE5A6F5-4CA6-4F42-85DC-D5A26BF7DE00} - System32\Tasks\CCleanerSkipUAC - uživatel pc => C:\Program Files\CCleaner\CCleaner.exe [39138608 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {828F3AAC-81C4-49A0-85B0-91A22484C7C9} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-08-20] (Garmin International, Inc. -> )
Task: {E7E27139-AFE5-4F83-9C7F-5202A4125704} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{8F3D6607-59A0-4BFD-831E-103248C3A3AA} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {1A41D493-9B3D-4CBB-B063-369BE554330C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (No File)
Task: {FF7BC90E-7AD4-4646-9BAC-2B35E2837C02} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {089AB3B1-EFEF-432D-AD5E-BE86AB055EFC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C5E0911-DC10-4348-AE24-E023A6C9BC9F} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2596720 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {617586A6-42A9-427C-8840-89093CE98F7F} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1957744 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1342F00-8FCE-4671-A002-D2CCCCB07FCE} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2092720 2018-11-26] (Microsoft Corporation -> Microsoft)
Task: {FE1DDC77-AE91-4783-9E3A-5AACEFBE1D97} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\CEIP.exe [39600 2018-11-26] (Microsoft Corporation -> Microsoft)
Task: {069F7875-C7A5-4B97-845A-94B8FCC53474} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2596720 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB56E3A3-A91B-4C67-9562-8FEAED810D40} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1957744 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {1675F334-8118-4D06-BBCE-5DC67656ED27} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-11-11] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{59cf3469-1bb0-4801-bd47-8b09629ee54d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{59cf3469-1bb0-4801-bd47-8b09629ee54d}: [DhcpDomain] docsis.vodafone.cz
Tcpip\..\Interfaces\{996a6209-7dae-409a-aa11-f59e64a972a7}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{996a6209-7dae-409a-aa11-f59e64a972a7}: [DhcpDomain] docsis.vodafone.cz
Tcpip\..\Interfaces\{c717fb04-cf44-4013-bb7d-d86b6bc7f314}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c717fb04-cf44-4013-bb7d-d86b6bc7f314}: [DhcpDomain] docsis.vodafone.cz
Tcpip\..\Interfaces\{dd4ad310-65fd-4585-bf23-46683faf01a7}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{dd4ad310-65fd-4585-bf23-46683faf01a7}: [DhcpDomain] docsis.vodafone.cz

Edge:
=======
Edge Profile: C:\Users\uživatel pc\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-02]
Edge Extension: (Dokumenty Google offline) - C:\Users\uživatel pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-13]
Edge Extension: (Edge relevant text changes) - C:\Users\uživatel pc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF DefaultProfile: emwwjr4c.default
FF ProfilePath: C:\Users\uživatel pc\AppData\Roaming\Mozilla\Firefox\Profiles\emwwjr4c.default [2025-06-02]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\uživatel pc\AppData\Roaming\Mozilla\Firefox\Profiles\emwwjr4c.default\Extensions\sp@avast.com.xpi [2019-08-21]
FF ProfilePath: C:\Users\uživatel pc\AppData\Roaming\Mozilla\Firefox\Profiles\h2qgd6ji.default-release [2025-06-02]
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default [2025-06-06]
CHR DownloadDir: C:\Users\uživatel pc\Desktop\Screen
CHR Notifications: Default -> hxxps://account.skrill.com; hxxps://badoo.com; hxxps://www.bet365.com; hxxps://www.facebook.com; hxxps://www.ifortuna.cz
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Překladač Google) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-02]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-06-06]
CHR Extension: (PDF Editor for Chrome:Edit, Fill, Sign, Print) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gphandlahdpffmccakmbngmbjnjiiahp [2024-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\uživatel pc\AppData\Local\Google\Chrome\User Data\System Profile [2025-06-02]
CHR HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7378736 2025-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1032440 2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1085176 2025-06-02] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-21] (Avast Software s.r.o. -> AVAST Software)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559304 2025-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [21088 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244320 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390744 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297568 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85088 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [281184 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [570976 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92256 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72288 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [881760 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1272896 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [202312 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [392264 2025-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-08-21] (Martin Malik - REALiX -> REALiX(tm))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 hola_split_tunnel; \??\C:\Program Files\Hola\app\hola_split_tunnel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-06 16:09 - 2025-06-06 16:10 - 000023019 _____ C:\Users\uživatel pc\Desktop\FRST.txt
2025-06-06 16:09 - 2025-06-06 16:09 - 000000000 ____D C:\Users\uživatel pc\Desktop\FRST-OlderVersion
2025-06-06 10:38 - 2025-06-06 12:38 - 000257482 _____ C:\Users\uživatel pc\Desktop\Otakarova 8 kW.pdf
2025-06-06 10:38 - 2025-06-06 12:38 - 000238360 _____ C:\Users\uživatel pc\Desktop\Pitkovice teta 3,5 kW.pdf
2025-06-06 10:38 - 2025-06-06 12:38 - 000136910 _____ C:\Users\uživatel pc\Desktop\Chorošová 5 multi 2x5kW.pdf
2025-06-06 10:38 - 2025-06-06 12:38 - 000136886 _____ C:\Users\uživatel pc\Desktop\Pitkovice - teta multi 2x5kw.pdf
2025-06-02 22:12 - 2025-06-02 22:12 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2025-06-02 20:08 - 2025-06-02 20:08 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-06-02 20:07 - 2025-06-02 22:11 - 000005035 _____ C:\Users\uživatel pc\Desktop\Fixlog.txt
2025-06-02 20:03 - 2025-06-06 16:09 - 002405888 _____ (Farbar) C:\Users\uživatel pc\Desktop\FRST64.exe
2025-05-31 23:15 - 2019-08-22 01:23 - 000002702 _____ C:\Users\uživatel pc\Desktop\Excel - kopie.lnk
2025-05-31 23:09 - 2025-05-31 23:14 - 000013449 _____ C:\Users\uživatel pc\Desktop\LG ceny split - kopie.xlsx
2025-05-29 15:07 - 2025-05-29 15:08 - 000000000 ____D C:\Users\uživatel pc\Desktop\Byt - stínění
2025-05-19 14:31 - 2025-05-21 20:17 - 073919798 _____ C:\Users\uživatel pc\Desktop\LG 2025.pdf
2025-05-19 14:31 - 2025-05-19 14:31 - 004084623 _____ C:\Users\uživatel pc\Desktop\LG 2025 (1).pdf
2025-05-16 19:48 - 2025-05-16 19:48 - 004881083 _____ C:\Users\uživatel pc\Desktop\TCL 2025.pdf
2025-05-15 15:54 - 2025-06-06 16:09 - 000000000 ____D C:\FRST
2025-05-13 22:57 - 2025-05-13 22:57 - 000022680 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-05-13 22:56 - 2025-05-13 22:56 - 000022680 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-05-13 22:47 - 2025-05-13 22:47 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-06 15:41 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-06 15:06 - 2021-05-02 19:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-06-06 13:00 - 2021-12-20 02:07 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-06-06 12:38 - 2019-08-22 00:26 - 000000000 ____D C:\Users\uživatel pc\Desktop\Screen
2025-06-06 12:37 - 2019-08-22 01:21 - 000000000 ____D C:\Users\uživatel pc\AppData\Roaming\Microsoft\Šablony
2025-06-06 12:31 - 2023-05-15 11:47 - 000002788 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-06-06 12:31 - 2023-05-15 11:47 - 000002266 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - uživatel pc
2025-06-06 12:31 - 2023-05-15 11:47 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-06-06 12:31 - 2021-05-02 19:52 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-06-06 12:31 - 2021-05-02 19:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2025-06-06 12:31 - 2021-05-02 19:52 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-06-06 12:31 - 2021-05-02 19:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-06-06 12:31 - 2021-05-02 19:52 - 000002896 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2025-06-06 12:31 - 2021-05-02 19:52 - 000002444 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000002392 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000002388 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_itype_exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000002374 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000002370 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2025-06-06 12:31 - 2021-05-02 19:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-06-06 12:21 - 2019-08-21 23:57 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-06 12:20 - 2019-08-21 23:25 - 000000000 __SHD C:\Users\uživatel pc\IntelGraphicsProfiles
2025-06-05 22:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-05 22:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-06-05 22:10 - 2020-06-10 15:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-05 22:10 - 2019-08-21 22:51 - 000000000 ____D C:\Users\uživatel pc\AppData\Local\Packages
2025-06-05 22:08 - 2019-08-22 14:04 - 000000000 ____D C:\Program Files\CCleaner
2025-06-02 23:28 - 2019-08-22 00:18 - 000000000 ____D C:\Users\uživatel pc\Desktop\Multiidentity
2025-06-02 22:17 - 2021-05-02 19:54 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-06-02 22:17 - 2019-12-07 16:43 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2025-06-02 22:17 - 2019-12-07 16:43 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2025-06-02 22:17 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2025-06-02 22:12 - 2021-05-02 19:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-06-02 22:12 - 2021-05-02 19:43 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-02 22:12 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-06-02 22:12 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2025-06-02 22:12 - 2019-08-22 01:12 - 000000000 ____D C:\ProgramData\AVAST Software
2025-06-02 22:12 - 2019-08-21 23:03 - 000000000 ____D C:\ProgramData\NVIDIA
2025-06-02 20:52 - 2019-08-22 00:29 - 000000000 ____D C:\Users\uživatel pc\Desktop\Tisk
2025-06-02 20:51 - 2019-09-02 21:38 - 000000000 ____D C:\Users\uživatel pc\AppData\Roaming\Microsoft\Excel
2025-06-02 20:47 - 2019-08-22 01:21 - 000000000 ____D C:\Users\uživatel pc\AppData\Roaming\Microsoft\Word
2025-06-02 20:08 - 2020-10-14 22:03 - 000281184 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-06-02 20:08 - 2020-04-14 21:08 - 000570976 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 001272896 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000881760 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000392264 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000390744 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000297568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000244320 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000092256 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000085088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000072288 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-06-02 20:08 - 2019-08-22 01:13 - 000021088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2025-06-02 20:07 - 2021-01-22 16:01 - 000000000 ____D C:\Users\uživatel pc\AppData\LocalLow\Temp
2025-06-01 17:14 - 2020-06-29 19:30 - 000000000 ____D C:\Users\uživatel pc\AppData\Local\CrashDumps
2025-05-29 15:59 - 2022-08-23 15:22 - 000012995 _____ C:\Users\uživatel pc\Desktop\LG ceny split.xlsx
2025-05-29 15:32 - 2019-08-22 00:18 - 000000000 ____D C:\Users\uživatel pc\Desktop\PC + NET
2025-05-29 15:13 - 2019-08-22 00:18 - 000000000 ____D C:\Users\uživatel pc\Desktop\Jídlo
2025-05-27 06:49 - 2021-06-03 18:44 - 000000000 ____D C:\Users\uživatel pc\AppData\Local\Avast Software
2025-05-21 22:06 - 2019-08-22 00:26 - 000000000 ____D C:\Users\uživatel pc\Desktop\Chlazení
2025-05-14 01:43 - 2021-05-02 19:43 - 000444768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-05-14 01:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-05-14 01:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2025-05-13 23:29 - 2019-08-21 23:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-05-13 23:26 - 2019-08-21 23:34 - 214836568 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-05-13 23:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-05-13 22:55 - 2021-05-02 19:46 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-05-13 22:15 - 2022-02-12 01:48 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hola VPN.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

#27 Příspěvek od **JaRon** » 06 čer 2025 15:38

Takze zopakuj proces

novy fixlist.txt:
Start

CloseProcesses:

S3 hola_split_tunnel; \??\C:\Program Files\Hola\app\hola_split_tunnel.sys [X]

HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION

IE trusted site: HKU\S-1-5-21-4258462134-2307798972-4277770657-1002\...\hola.org -> hxxp://hola.org

Hola VPN 1.242.686 (HKLM\...\Hola) (Version: 1.242.686 - Hola VPN Ltd.) <==== ATTENTION

KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )

Task: {E7E27139-AFE5-4F83-9C7F-5202A4125704} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{8F3D6607-59A0-4BFD-831E-103248C3A3AA} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)

EmptyTemp:

End

darko77 · #28 Příspěvek od **darko77** » 07 čer 2025 14:30

jenom se zeptam jak se otevírá nový poznamkový blok ?

delal jsem to tak ze jsem kopíroval text co jsem od vas dostal do poznamkoveho bloku co vygeneroval program FRST a prepsal jen název na fixlist.txt

#29 Příspěvek od **JaRon** » 07 čer 2025 16:04

S prikazoveho riadku notepad.exe

darko77 · #30 Příspěvek od **darko77** » 07 čer 2025 16:33

dekuji !

takhle to mám vsechno pripravené na ploše, stačí ted zadat FIX ?

VIRY.CZ

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu