VIRY.CZ

Dobrý den, otec mi předal NTB, že prý je nějaký divný. Konkrétně nemůžu najít nikde žádné fotky a obrázky, jakoby všechno zmizelo. Dále se mu sama změnila plocha a některé ikony zmizely. Nefunguje ani tak jak má spodní lišta, nereaguje na levé tlačítko myši, ale na pravé ano. Chtěl bych požádat o kontrolu logu. Nejde spustit FRST, tak posílám log z RSIT. Předem moc děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by culik48 at 2023-06-24 16:07:05
Microsoft Windows 10 Home
System drive C: has 325 GB (75%) free of 434 GB
Total RAM: 3962 MB (24% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:07:56, on 24.06.2023
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.1566)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files\trend micro\culik48.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [OneDrive] "C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --auto-launch-at-startup --profile-directory="Default"
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Služba Avast Browser Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: Služba Avast Browser Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: @oem12.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Avast Cleanup (CleanupPSvc) - AVAST Software - C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_4e0b25 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Avast Driver Updater (DriverUpdSvc) - AVAST Software - C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.127\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9152 bytes

======Listing Processes======









C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain


C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
dashost.exe {c6bf0a1c-4813-4883-b0353d58898adb9e}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\BtwRSupportService.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc


"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc


winlogon.exe
"dwm.exe"
"fontdrvhost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation -p -s wcncsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" /nogui
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=gpu-process --field-trial-handle=2424,18179274017831292570,2941775129314948962,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=2468 /prefetch:2
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" --type=gpu-process --field-trial-handle=2480,2270362670839766172,1713578812027620894,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=2528 /prefetch:2
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2480,2270362670839766172,1713578812027620894,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=3792 /prefetch:8
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2424,18179274017831292570,2941775129314948962,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=3744 /prefetch:8
AvastUI.exe /nogui
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="6D946612-9EB0-0069-A8EF-3D0630F25515" /binpath="C:\Program Files\Avast Software\Avast" /logpath="C:\ProgramData\Avast Software\Avast\log"
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4456 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=5412 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4584 /prefetch:8

C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe"

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
taskhostw.exe
C:\Windows\System32\mousocoreworker.exe -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://ipm.avcdn.net/?data=CAAQFxgEIK4 ... obr=msedge
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=114.0.5735.134 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=114.0.1823.51 --initial-client-data=0x170,0x174,0x178,0x14c,0x1bc,0x7ffc44544210,0x7ffc44544220,0x7ffc44544230
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=2160 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:2
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:3
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=2616 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --instant-process --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=11 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=160660009267 --mojo-platform-channel-handle=4804 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=160705663022 --mojo-platform-channel-handle=6456 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=cs --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=8684 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhostw.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\wbem\wmiprvse.exe
/silentConfig
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\MicrosoftEdge_X64_114.0.1823.58_114.0.1823.51.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\EDGEMITMP_2336A.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\MicrosoftEdge_X64_114.0.1823.58_114.0.1823.51.exe" --previous-version="114.0.1823.51" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\114.0.5735.134_chrome_installer.exe" --verbose-logging --do-not-launch-chrome --channel=stable --system-level
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\CHROME.PACKED.7Z" --verbose-logging --do-not-launch-chrome --channel=stable --system-level
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\WINDOWS\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=114.0.5735.134 --initial-client-data=0x294,0x298,0x29c,0x270,0x2a0,0x7ff6fb459498,0x7ff6fb4594a8,0x7ff6fb4594b8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2905_none_7dd39c4c7cb9dfa0\TiWorker.exe -Embedding
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=3900 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=109 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161770971814 --mojo-platform-channel-handle=10044 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=110 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161771140177 --mojo-platform-channel-handle=5868 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=114 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161884219289 --mojo-platform-channel-handle=6408 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x4e8
"C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho_64.dll [2023-06-15 589200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho.dll [2023-06-15 454544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"TuneupUI.exe"=C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2023-05-06 4499864]
"DriverUpdUI.exe"=C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [2023-05-06 4949912]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2023-05-12 220056]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-04-22 289792]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-04-22 289792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2019-12-07 30870320]
"OneDrive"=C:\Program Files\Microsoft OneDrive\OneDrive.exe [2023-06-22 2605944]
"AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2023-05-18 3311032]
"MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2023-06-15 4113824]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2023-06-24 16:07:07 ----D---- C:\Program Files\trend micro
2023-06-24 16:07:05 ----D---- C:\rsit
2023-06-24 15:54:03 ----HD---- C:\$WinREAgent
2023-06-22 20:33:14 ----A---- C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:33:11 ----A---- C:\WINDOWS\system32\drivers\asw3ccb6a65c1dd481f.tmp
2023-06-22 20:27:36 ----D---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:24:52 ----D---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24:28 ----SD---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft

======List of files/folders modified in the last 1 month======

2023-06-24 16:07:07 ----RD---- C:\Program Files
2023-06-24 16:02:16 ----D---- C:\WINDOWS\Temp
2023-06-24 15:58:49 ----D---- C:\WINDOWS\SystemTemp
2023-06-24 15:54:07 ----D---- C:\WINDOWS\Prefetch
2023-06-24 15:52:29 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 15:50:48 ----HD---- C:\Program Files\WindowsApps
2023-06-24 15:48:49 ----D---- C:\Program Files (x86)\Google
2023-06-24 15:43:11 ----D---- C:\WINDOWS\system32\sru
2023-06-24 15:42:16 ----D---- C:\WINDOWS\system32\SleepStudy
2023-06-22 21:00:34 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2023-06-22 20:39:59 ----D---- C:\Program Files\Microsoft OneDrive
2023-06-22 20:39:42 ----D---- C:\WINDOWS\system32\Tasks
2023-06-22 20:33:14 ----HD---- C:\WINDOWS\ELAMBKUP
2023-06-22 20:33:14 ----D---- C:\WINDOWS\System32
2023-06-22 20:33:12 ----D---- C:\WINDOWS\system32\drivers
2023-06-22 20:24:27 ----RD---- C:\Users
2023-06-22 20:04:28 ----D---- C:\WINDOWS\SysWOW64
2023-06-22 20:04:28 ----D---- C:\WINDOWS\system32\oobe
2023-06-22 20:04:20 ----D---- C:\WINDOWS\Tasks
2023-06-22 20:04:20 ----D---- C:\WINDOWS\system32\drivers\etc
2023-06-22 20:04:20 ----D---- C:\WINDOWS\INF
2023-06-22 20:04:17 ----D---- C:\Program Files\WinRAR
2023-06-22 19:58:19 ----D---- C:\WINDOWS\system32\wbem
2023-06-22 19:40:25 ----D---- C:\WINDOWS\registration
2023-06-22 19:39:56 ----SHD---- C:\System Volume Information
2023-06-22 19:39:11 ----D---- C:\ProgramData\AVAST Software
2023-06-22 19:38:19 ----D---- C:\Program Files\Avast Software
2023-06-22 19:35:01 ----D---- C:\WINDOWS\system32\config
2023-06-22 19:31:54 ----D---- C:\WINDOWS\AppReadiness
2023-06-22 19:25:15 ----RD---- C:\WINDOWS\Microsoft.NET
2023-06-22 19:22:42 ----D---- C:\WINDOWS\Minidump
2023-06-22 19:11:37 ----D---- C:\WINDOWS\Logs
2023-06-22 19:09:56 ----D---- C:\WINDOWS\system32\catroot2
2023-06-22 19:07:25 ----ASH---- C:\DumpStack.log.tmp
2023-06-22 19:07:24 ----D---- C:\Windows
2023-06-19 18:17:15 ----D---- C:\WINDOWS\system32\NDF
2023-05-30 09:16:25 ----D---- C:\WINDOWS\WinSxS
2023-05-30 08:21:38 ----D---- C:\WINDOWS\CbsTemp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2023-06-22 31376]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2023-06-22 297832]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2023-06-22 95912]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2022-10-14 25576]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2023-06-22 80376]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2023-06-22 319560]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-02 647736]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2021-06-09 57168]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2022-08-17 44032]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2023-06-22 236448]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2023-06-22 392320]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2023-06-22 39600]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2023-06-22 271504]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2023-06-22 556064]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2023-06-22 105248]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2023-06-22 943456]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2023-06-22 703800]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2023-02-15 95232]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2023-05-12 212672]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2023-01-12 145760]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2023-02-15 493056]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2021-04-22 53248]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-12-08 33560]
R3 bcbtums;@oem12.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2019-12-07 7585280]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2023-05-15 1565696]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2023-05-15 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 CnxtHdAudService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-08-05 1317096]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem18.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2019-12-07 121344]
R3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2021-04-22 322376]
R3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2022-09-16 142176]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2022-02-11 158520]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2022-02-11 694272]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2023-03-16 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2023-05-15 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2021-04-22 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2023-05-15 45568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2023-04-17 133632]
S3 btwampfl;@oem12.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2023-03-16 96112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2021-04-22 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2022-04-14 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2022-04-14 210944]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2023-05-15 131400]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2022-01-15 990536]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [2023-05-12 584600]
R2 avast! Tools;Avast Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2023-05-12 585112]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [2021-08-16 56912]
R2 BcmBtRSupport;@oem12.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CDPUserSvc_4e0b25;Uživatelská služba platformy připojených zařízení_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-23 224144]
R2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-10-23 154920]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 OneSyncSvc_4e0b25;Hostitel synchronizace_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [2023-05-12 8821656]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 cbdhsvc_4e0b25;Uživatelská služba schránky_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2022-10-14 987568]
S2 avast;Služba Avast Browser Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2022-12-21 191120]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S2 CleanupPSvc;Avast Cleanup; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [2023-05-06 17477528]
S2 DriverUpdSvc;Avast Driver Updater; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [2023-05-06 9007000]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 AarSvc_4e0b25;Agent Activation Runtime_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2022-12-21 191120]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2023-05-18 2032672]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BcastDVRUserService_4e0b25;Uživatelská služba pro GameDVR a vysílání her_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BluetoothUserService_4e0b25;Služba pro podporu uživatelů Bluetooth_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 CaptureService_4e0b25;CaptureService_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 ConsentUxUserSvc_4e0b25;ConsentUX_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-17 382696]
S3 CredentialEnrollmentManagerUserSvc_4e0b25;CredentialEnrollmentManagerUserSvc_4e0b25; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-17 382696]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DeviceAssociationBrokerSvc_4e0b25;DeviceAssociationBroker_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicePickerUserSvc_4e0b25;DevicePicker_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicesFlowUserSvc_4e0b25;Tok zařízení_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2022-01-15 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-23 224144]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 FileSyncHelper;FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.114.0530.0001_1\FileSyncHelper.exe [2023-06-22 3446648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.127\elevation_service.exe [2023-05-16 1741080]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-10-23 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MessagingService_4e0b25;Služba zasílání zpráv_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\elevation_service.exe [2023-06-15 1744272]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 OneDrive Updater Service;OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.114.0530.0001_1\OneDriveUpdaterService.exe [2023-06-22 3781496]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-04-22 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PimIndexMaintenanceSvc_4e0b25;Data kontaktů_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PrintWorkflowUserSvc_4e0b25;PrintWorkflow_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-04-22 1265152]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]

-----------------EOF-----------------

Zdravím!
Log RSIT není vhodný pro souč. 64b systémy (není s nimi plně kompatibilní). Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

Já bych rád, ale jak jsem psal, tak FRST mi nelze spustit. Zkouším normálně i jako správce, ale nereaguje.

Tak se to nakonec povedlo:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2023
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (24-06-2023 23:42:29)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\Avast\AvastUI.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <22>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113824 2023-06-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12

Edge:
=======
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-24]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]

FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-24 23:42 - 2023-06-24 23:44 - 000018266 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-24 23:43 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 23:31 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-24 23:31 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-24 23:28 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-06-2023
Ran by culik48 (24-06-2023 23:45:57)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.51 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E58DD35-F4A5-4785-A055-8159A886FB40}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.51\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

24-06-2023 18:58:23 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.

Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.

Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}

Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}

Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/24/2023 06:58:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Windows8_OS (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/24/2023 05:10:42 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (06/24/2023 05:08:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.


System errors:
=============
Error: (06/24/2023 06:00:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (06/24/2023 06:00:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.

Error: (06/24/2023 06:00:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.

Error: (06/24/2023 06:00:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.

Error: (06/24/2023 05:45:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.

Error: (06/24/2023 05:45:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.

Error: (06/24/2023 05:45:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.

Error: (06/24/2023 05:40:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3PR-MICROSOFT.WINDOWSALARMS.


Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 78%
Total physical RAM: 3961.77 MB
Available physical RAM: 860.95 MB
Total Virtual: 5369.77 MB
Available Virtual: 1865.98 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.99 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS

\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)

Partition: GPT.

==================== End of Addition.txt =======================

OK. RSIT by nám vážně byl k ničemu. Teď spusťte ADWCleaner:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Čištění a opravy tam nejsou, pouze karanténa a bylo to bez restartu...


# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2023
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.2965)
# Cleaned: 5
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Public\Documents\Downloaded Installers

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1922 octets] - [25/06/2023 10:25:12]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Poprosím o nové logy FRST+Addition.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2023
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (25-06-2023 17:22:46)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Service Pack 2 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM-x32\...\Winlogon: [Userinit]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-25]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]

FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-25 17:22 - 2023-06-25 17:26 - 000016913 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST.txt
2023-06-25 10:24 - 2023-06-25 10:29 - 000000000 ____D C:\AdwCleaner
2023-06-25 10:21 - 2023-06-25 10:33 - 008791352 _____ (Malwarebytes) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\AdwCleaner.exe
2023-06-24 23:45 - 2023-06-24 23:48 - 000034289 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\Addition.txt
2023-06-24 23:42 - 2023-06-24 23:48 - 000032891 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-25 17:24 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-25 17:12 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-25 17:12 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-25 17:11 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-25 17:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-25 11:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-25 10:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-06-2023
Ran by culik48 (25-06-2023 17:32:08)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Microsoft Windows 10 Home Service Pack 2 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION

==================== Internet Explorer (Version 11) (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2885EC46-71ED-4CF1-9088-3638C6FA3CE7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

24-06-2023 18:58:23 Naplánovaný kontrolní bod
25-06-2023 10:28:28 AdwCleaner_BeforeCleaning_25/06/2023_10:28:26

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/25/2023 05:13:52 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe na řádku 0.
Neplatná syntaxe XML.

Error: (06/25/2023 10:28:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.

Error: (06/25/2023 10:28:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {20897094-2996-413b-a663-bb9de84fe60f}

Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.

Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Parametr není správný.
.

Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}

Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}

Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (06/25/2023 10:53:07 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.

Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.

Error: (06/25/2023 10:53:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.

Error: (06/25/2023 10:52:52 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.

Error: (06/25/2023 10:52:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4NNS1-Microsoft.DesktopAppInstaller.

Error: (06/25/2023 10:52:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.

Error: (06/25/2023 10:51:33 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.


Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 3961.77 MB
Available physical RAM: 1038.7 MB
Total Virtual: 5369.77 MB
Available Virtual: 1857.52 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.73 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS

\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)

Partition: GPT.

==================== End of Addition.txt =======================

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION

EmptyTemp:
End

Uložte do C:\Users\TEMP.IDEA-PCCULIK.003\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Chtěl jsem dokončit fix klikem na ok a počítač se restartoval, ale poté nebylo na ploše vubec nic co se tam uložilo. FRST i logy ze skenů a i log z fixu zmizeli. Tak jsem fix udělal znovu a nenechal PC zrestartovat. Tady je log z fixu...

Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2023
Ran by culik48 (25-06-2023 20:53:03) Run:2
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Loaded Profiles: culik48 & Administrator
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{417E1065-4F9D-4305-90B2-4F9BED9FF924}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20C640AA-00D1-40D5-A6F9-A0204FC33233}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B063090A-CAD8-4B17-B4BF-679FB670E7E7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03F19A16-DC0B-41D1-94FF-275D9B1624F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9567D624-4207-4568-A78B-C5573B3CE23B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{609F312E-BC92-4993-A4AD-DE8286C7112C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E00FD082-8A39-4B17-9B30-309BD903F9B2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB1A7E12-D105-493E-ABF2-0F14422A932D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BEBEAAEB-68BD-42D5-A95F-312317F85584}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1184E825-C309-4054-8DBD-7389BD9806AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{149CE819-A0F5-41B3-B788-CDE67250DC00}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6FEF3BB-2063-4C50-A538-4E33821CB37B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8A34D39-A31E-4F77-850A-B5CCD07C2253}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F3719876-ADD4-411E-8D27-73547AD8EBA0}" => not found
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiSpyware => Error setting value.
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiVirus => Error setting value.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3958C4B-66E3-4A26-8145-7AB84307CB7E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42F1552B-3304-468B-8705-3B0A5B5AA244}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8425736 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 47 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
TEMP.IDEA-PCCULIK.003 => 221709 B
culik48 => 221709 B
Administrator => 221709 B

RecycleBin => 0 B
EmptyTemp: => 8.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:53:23 ====

Bylo smazáno. Změnil se stav k lepšímu?

Bohužel se vůbec nic nezměnilo. Zase po restartu je úplně prázdná plocha , pomalu nabíhá stále, částečně nefunkční spodní lišta. ještě jsem zjistil, že ani prohlížeč neudrží žádnou historii a musí se vše vždy dělat od začátku jako při nové instalaci prohlížeče.

Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
Skus sa prihlasit do uctu administrator