VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-08.2024
Ran by MB1 (administrator) on MB1-PC (MSI MS-7817) (04-08-2024 18:06:31)
Running from C:\Users\MB1\Desktop\FRST64.exe
Loaded Profiles: MB1
Platform: Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Shen Zhen Dragon Rise Macro Technology Limited Company -> ) C:\Windows\USB Vibration\7906\USB Gamepad.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\MB1\AppData\Local\Microsoft\OneDrive\24.146.0721.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [427416 2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [USB Gamepad] => C:\WINDOWS\USB Vibration\7906\USB Gamepad.exe [796784 2008-12-10] (Shen Zhen Dragon Rise Macro Technology Limited Company -> )
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) <==== ATTENTION
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [MicrosoftEdgeAutoLaunch_BD726E271F5572E54EA4DB5900075514] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814968 2024-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [619520 2024-05-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\SXP3MPC: C:\Windows\System32\spool\prtprocs\x64\sxp3mpc.dll [33792 2009-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\EPSON SX110 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFBE.DLL [108032 2008-08-08] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\SXP3M Langmon: C:\WINDOWS\system32\sxp3ml6.dll [34304 2012-11-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\127.0.6533.89\Installer\chrmstp.exe [2024-08-01] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {6D6DB656-8BEA-4775-9AD9-B5E30F3E9BA9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {387FEB1B-9ABC-41C4-AC44-0C7E9061EC6D} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5157272 2024-07-27] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {74C0142B-A580-4CF4-86C9-AEF235D24711} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup /iavs
Task: {56F94551-0180-4801-9912-F0EDC441AD37} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-02] (Avast Software s.r.o. -> Avast Software)
Task: {A593C16C-F836-486A-8D4E-D8BA24093DC3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E35EDABA-250E-435C-BA01-A119E1C815EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {F58C0AFD-F7B2-43EF-85E8-20E29D72D704} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C45C00FD-5343-418C-AFA8-2964FACDA3C4} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {3790A8EA-C80F-4E37-AA2F-FE808A3FEB33} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AA028E2C-9BC8-4B8C-9100-966A69E7D325} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {A7A6B1B9-7906-46D4-B0CE-35E1D760DDAA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {7D520FD7-1B6E-4D76-9544-08ABC2194586} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {795C4D65-1481-45C2-B9BF-C9D6DFF7E90A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {32D7F8AB-3A55-4509-8BD4-AF9827528C17} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {B08ABFEA-FA57-43E8-A965-E610E6681B71} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (No File)
Task: {A51A254F-27C3-44D8-9120-3D46D7FD90D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15 (No File)
Task: {74582C39-B5F6-4F8A-97A5-52555557C0D6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {E905B924-D963-4F00-B472-EC618E99EC75} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {5FCA8E5E-1932-4697-A52D-C21B5B9D2CD2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {354624B0-D49C-411F-ABF9-786FB959B7B8} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {944B5D16-ECA8-4C86-9289-08B2CAAFDC68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {414E5E8C-9FF8-47E9-A6DC-5539001C67D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {539BE57D-1B42-4F47-9E1D-842934CCEF49} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {5A6B6DB7-650A-4AB9-AD44-9ED867DEB9CA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {C782AF11-4D6D-4D62-B26F-7AA4CC5D4E31} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {E6FE6004-03DE-4FBA-8DE3-BB5D15A37C59} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (No File)
Task: {656F79F9-1E4B-4692-BA8E-4ABD71C4FC7A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {5B39C614-7246-45F6-AC1B-1763C84A565E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {D8447909-A77D-4ACA-91E8-329FF80F69F0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {547B08EF-A8A7-4C17-AB9D-48BC825D4A57} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec /StartRecording (No File)
Task: {7BF95FB6-051B-4312-9F5F-BA44950C9A83} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {B7DFD3E5-F9E1-4E23-B0EC-2EEC3F1EA4AC} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {C79F2687-C570-4A8B-8178-50168D79E8D3} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{79600897-a531-47f6-b4f2-7abeccb390d1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{79600897-a531-47f6-b4f2-7abeccb390d1}: [DhcpDomain] www.tendawifi.com
Tcpip\..\Interfaces\{c857ffc1-b553-400e-9fff-a8705e3f2343}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-04]
Edge Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-12]
Edge Extension: (Edge relevant text changes) - C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2024-08-01] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-07-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default [2024-08-04]
CHR DownloadDir: C:\Users\MB1\Desktop
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://pelipecky.cz; hxxps://www.facebook.com; hxxps://www.mercedesclub.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-07-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-03-03]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-03-03]
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-08-02]
CHR Notifications: Profile 2 -> hxxps://esvid.net; hxxps://scoolbylife.com; hxxps://www.facebook.com; hxxps://www.ireceptar.cz; hxxps://www.youtube.com
CHR StartupUrls: Profile 2 -> "hxxp://seznam.cz/"
CHR DefaultSearchURL: Profile 2 -> hxxps://search.seznam.cz/?q={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> seznam.cz
CHR DefaultNewTabURL: Profile 2 -> hxxps://search.seznam.cz/?sourceid=chromechoice
CHR DefaultSuggestURL: Profile 2 -> hxxps://suggest.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-03-03]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-24]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-24]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-24]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-24]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-08-24]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-24]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-24]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-24]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-24]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-03-03]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-25]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-25]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-25]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-25]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-10-25]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-10-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-25]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-25]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-07-17]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-10]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-10]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-10]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-10]
CHR Extension: (Avast SafePrice) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2024-07-17]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-07-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-10]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-10]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6 [2024-03-28]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-06]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-06]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-06]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-06]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-03-28]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-12-06]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-06]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-12-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-06]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-06]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\System Profile [2024-03-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9052568 2024-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [766360 2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1203608 2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [937296 2024-08-01] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20536 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229944 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380984 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [293944 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84536 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27744 2024-07-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28728 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271928 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548920 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97840 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69176 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [948792 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1198648 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203736 2024-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-09-10] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2015-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S2 DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-04 18:06 - 2024-08-04 18:07 - 000031310 _____ C:\Users\MB1\Desktop\FRST.txt
2024-08-04 18:04 - 2024-08-04 18:04 - 002397184 _____ (Farbar) C:\Users\MB1\Desktop\FRST64.exe
2024-07-27 15:58 - 2024-07-27 15:58 - 000314776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-07-23 17:01 - 2024-07-23 17:01 - 000100469 _____ C:\Users\MB1\Desktop\parkcard.pdf
2024-07-20 14:09 - 2024-07-20 14:10 - 000377624 _____ C:\Users\MB1\Desktop\CEDOK-rezervovat-11679120 (1).pdf
2024-07-20 14:09 - 2024-07-20 14:09 - 000121231 _____ C:\Users\MB1\Desktop\CEDOK-Odbavení-11679120.pdf
2024-07-11 19:32 - 2024-07-11 19:32 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-07-10 17:12 - 2024-07-10 17:12 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-10 17:11 - 2024-07-10 17:11 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-10 17:05 - 2024-07-10 17:05 - 000000000 ___HD C:\$WinREAgent
2024-07-09 10:02 - 2024-07-09 10:03 - 000661908 _____ C:\Users\MB1\Desktop\Zpráva.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-04 18:06 - 2017-01-21 21:54 - 000000000 ____D C:\FRST
2024-08-04 17:54 - 2018-06-21 08:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-08-04 17:54 - 2015-12-28 15:23 - 000000000 __SHD C:\Users\MB1\IntelGraphicsProfiles
2024-08-04 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-04 12:58 - 2020-07-31 21:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-04 09:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-04 09:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-01 23:52 - 2023-01-16 06:57 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-08-01 23:52 - 2020-06-05 08:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-01 23:50 - 2023-07-22 14:56 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-01 23:50 - 2023-07-22 14:56 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-08-01 23:50 - 2023-07-22 09:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-08-01 23:45 - 2021-12-11 19:00 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2024-08-01 23:45 - 2020-07-31 21:40 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-08-01 23:45 - 2020-07-31 21:40 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-08-01 23:45 - 2020-07-31 21:40 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2024-08-01 23:45 - 2020-07-31 21:33 - 000002411 _____ C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-01 23:42 - 2021-12-18 10:14 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-01 23:42 - 2015-12-28 15:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-07-28 22:56 - 2020-07-31 21:33 - 000000000 ____D C:\Users\MB1
2024-07-27 15:59 - 2018-05-09 16:13 - 000306648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-07-27 15:58 - 2022-10-14 15:46 - 000027744 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-07-27 15:58 - 2020-10-20 12:49 - 000271928 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-07-27 15:58 - 2020-07-31 21:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-07-27 15:58 - 2020-04-18 11:52 - 000548920 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-07-27 15:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-27 15:58 - 2019-01-14 15:39 - 000380984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-07-27 15:58 - 2019-01-08 07:22 - 000293944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-07-27 15:58 - 2019-01-08 07:22 - 000084536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-07-27 15:58 - 2019-01-08 07:22 - 000020536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2024-07-27 15:58 - 2018-10-25 11:26 - 000028728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-07-27 15:58 - 2018-05-09 16:13 - 001198648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-07-27 15:58 - 2018-05-09 16:13 - 000948792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-07-27 15:58 - 2018-05-09 16:13 - 000229944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-07-27 15:58 - 2018-05-09 16:13 - 000097840 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-07-27 15:58 - 2018-05-09 16:13 - 000069176 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-07-23 17:03 - 2018-08-01 09:58 - 000000000 ____D C:\Users\MB1\AppData\Local\CrashDumps
2024-07-19 06:28 - 2024-05-28 21:19 - 028451381 _____ C:\Users\MB1\Desktop\Island.odt
2024-07-12 16:57 - 2020-07-31 21:40 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2024-07-12 15:03 - 2020-07-31 21:40 - 001876158 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-12 15:03 - 2019-12-07 16:41 - 000781844 _____ C:\WINDOWS\system32\perfh005.dat
2024-07-12 15:03 - 2019-12-07 16:41 - 000172578 _____ C:\WINDOWS\system32\perfc005.dat
2024-07-12 15:03 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-07-12 14:53 - 2020-07-31 21:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-12 14:53 - 2017-12-20 07:47 - 000000000 ____D C:\Users\MB1\AppData\Local\Packages
2024-07-12 14:53 - 2015-12-29 15:27 - 000000000 ____D C:\ProgramData\AVAST Software
2024-07-11 19:35 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-11 19:33 - 2020-07-31 21:32 - 000435464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-11 19:32 - 2023-12-13 19:41 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-11 19:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-10 17:15 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-10 17:11 - 2020-07-31 21:32 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-10 17:04 - 2015-12-28 15:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 17:02 - 2015-12-28 15:48 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2023-06-30 09:32 - 2023-06-30 09:32 - 000003584 _____ () C:\Users\MB1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-06-18 05:54 - 2018-06-18 05:54 - 000029696 _____ () C:\Users\MB1\AppData\Local\MSGBOX.EXE
2017-06-25 10:23 - 2019-03-03 17:04 - 000000774 _____ () C:\Users\MB1\AppData\Local\MZD-AIO-TI.log
2016-03-20 12:45 - 2016-03-20 12:45 - 000000017 _____ () C:\Users\MB1\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-08.2024
Ran by MB1 (04-08-2024 18:08:57)
Running from C:\Users\MB1\Desktop
Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) (2020-07-31 19:40:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3595257899-2210446051-2448867403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3595257899-2210446051-2448867403-503 - Limited - Disabled)
Guest (S-1-5-21-3595257899-2210446051-2448867403-501 - Limited - Enabled)
MB1 (S-1-5-21-3595257899-2210446051-2448867403-1000 - Administrator - Enabled) => C:\Users\MB1
WDAGUtilityAccount (S-1-5-21-3595257899-2210446051-2448867403-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.002.20965 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.7.6124 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DJI Assistant 2 version V1.2.5 (HKLM-x32\...\{D939E096-78F1-4A32-A711-C1AD3F3D082A}_is1) (Version: V1.2.5 - DJI)
EBook Codec 1.0.0.1 (HKLM-x32\...\EBook Codec) (Version: 1.0.0.1 - Free Time)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 4.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.89 - Google LLC)
HappyFoto-Designer 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{205AE40D-8AD7-4F29-A430-DD2168DA562D}) (Version: 14.5.0.1081 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{B5E06417-A4AC-4225-B36E-7E34C91616E7}) (Version: 1.31.8.1 - Intel Corporation) Hidden
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.4.6 - PandoraTV)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LibreOffice 6.3.4.2 (HKLM\...\{191F4D69-B671-4163-BB01-901B89A20D04}) (Version: 6.3.4.2 - The Document Foundation)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Mercedes me Download Manager 1.0.12 (HKLM\...\2086-8959-4386-4628) (Version: 1.0.12 - Mercedes-Benz Accessories GmbH)
Microsoft .NET Framework 4.5 (HKLM\...\{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}) (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) (HKLM\...\{25E80DAA-FD87-DCE5-202C-CC02F6673002}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.86 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\OneDriveSetup.exe) (Version: 24.146.0721.0002 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 X64 Additional Runtime - 14.16.27024 (HKLM\...\{9D29FC96-9EEE-4253-943F-96B3BBFDD0B6}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 X64 Minimum Runtime - 14.16.27024 (HKLM\...\{F1B0FB3A-E0EA-47A6-9383-3650655403B0}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
MZD-AIO-TI 2.8.4 (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\34093d1a-b79c-5bd0-8c69-6049d0980230) (Version: 2.8.4 - Trevelopment)
Photo Common (HKLM-x32\...\{15BFD731-A10E-43E9-9D18-0F682BC0480F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Prohlížeč Seznam.cz (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
RLinkToolbox 3.7.5.807 (HKLM-x32\...\RLinkToolbox) (Version: 3.7.5.807 - TomTom)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
Skype verze 8.36 (HKLM-x32\...\Skype_is1) (Version: 8.36 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.916 - McAfee, LLC)
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{9A470EA9-FF86-4C0E-992C-572BF2B9D6FF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{E100E2B5-F2EF-4955-AB7A-C3F2125A3BCD}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Xerox Phaser 3140 and 3155 (HKLM-x32\...\Xerox Phaser 3140 and 3155) (Version: - )
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.1 - ZONER software)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-16] ()
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-07-25] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-11] (Twitter Inc.)
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-12-28] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Marian - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MÁMA - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"

==================== Loaded Modules (Whitelisted) =============

2015-06-23 17:00 - 2015-06-23 17:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 17:00 - 2015-06-23 17:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-07-20] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-07-20] (McAfee, LLC -> McAfee, LLC)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-01-04 14:52 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MB1\Desktop\Tapety\wp4293160.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 4: Realtek PCIe GBE Family Controller #2 -> Rt64win7.sys


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "USB Gamepad"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{ED923620-8B29-4F2E-9719-3656B061A4C4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CFF627BE-C530-4829-8A85-4FE9AE6DF1E3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{44DC6C0C-9F43-4B0A-9246-ED4C2F1F1221}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14E5C94F-3374-4C68-98BF-E964FA21B425}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5D15FF53-9D78-4DBE-82E6-4AB1E7C732D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5E6D6AC-623F-484F-985C-3320D635358B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{219FC7E8-73C4-483F-AC36-EF817E7AC962}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DC3A96C0-3E8A-4F42-B74C-C9F82717CB0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{487131F5-3CB3-416E-B737-E0E90910B7A1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{673ECCD0-69F7-482D-929D-6E8BE4D1813A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F6EA039C-049D-4734-BBD1-16F2DBF6216F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{429874FF-B6AD-4039-9D84-559AFA38504B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3BFDE18F-9D9A-4B68-9A91-7A7FB34FFC4C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{35915BFC-5028-40B6-BDB9-4D758DEEDEAC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [UDP Query User{FF137622-DE73-45BA-9D65-011D1836E20F}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [TCP Query User{77566F83-77B1-4728-BACF-0324D9EF8604}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{AACE25B1-EF25-428C-B724-E33A7C5F6A30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{F24F2428-8769-4BA2-BCAE-952E1699C1F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{26A22EFE-D02C-4425-B69C-B68CFB747638}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB938433-08E0-43BB-AF56-E76948F2007A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9159E902-1EF2-4F24-A2D5-62ED19A72469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{72F0EF6A-4612-472C-9CFF-3812B9098141}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B2A3D469-C744-4D44-87FB-0E09A80A7767}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{ADA5809E-DD2F-4257-8312-3F25EBFE6D82}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{E59FA1FC-7CF7-44CB-BD3C-1F4ED85B1DA9}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [TCP Query User{6909B069-6A6D-4278-A17E-1618D049F214}C:\program files (x86)\dji product\dji assistant 2\assistant\root.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2\assistant\root.exe (SZ DJI Technology Co., Ltd. -> DJI)
FirewallRules: [UDP Query User{A9CF5536-6089-4C61-A305-C730FD46F3A3}C:\program files (x86)\dji product\dji assistant 2\assistant\root.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2\assistant\root.exe (SZ DJI Technology Co., Ltd. -> DJI)
FirewallRules: [{7E2E7F96-BA50-4290-900B-C2CB56070464}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{F1371812-D5D1-429D-A7FE-1980CC2F9BD2}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{85D5BBB8-6D88-413C-AD6E-A6620AAC92B5}C:\users\mb1\desktop\cumulusmxdist3184\cumulusmx\cumulusmx.exe] => (Allow) C:\users\mb1\desktop\cumulusmxdist3184\cumulusmx\cumulusmx.exe => No File
FirewallRules: [UDP Query User{12FBD1CF-A4AB-438E-BBFB-BF878A9BE993}C:\users\mb1\desktop\cumulusmxdist3184\cumulusmx\cumulusmx.exe] => (Allow) C:\users\mb1\desktop\cumulusmxdist3184\cumulusmx\cumulusmx.exe => No File
FirewallRules: [{7F6570FE-471E-4A31-8476-04D3D2F11868}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{75B2F212-9DD1-4435-8B08-001FC80C816F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7678BA71-1060-48F8-AD68-EDF721BEE205}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2728FB73-390D-4B19-8C13-CC01A8B29BE5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0AC18A60-3DC8-41D0-8B97-360C928CE92D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FEB466C4-9F11-4FF5-A59E-D5CE4C1C2999}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:16.61 GB) (15%)

==================== Faulty Device Manager Devices ============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (08/04/2024 12:23:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 916, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 6652, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 6652, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 4092, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 6484, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 4092, identifikátor PID ProfSvc: 1416.

Error: (08/01/2024 11:40:53 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\SecurityHealthService.exe, identifikátor PID: 2700, identifikátor PID ProfSvc: 1416.


System errors:
=============
Error: (08/04/2024 04:42:01 PM) (Source: DCOM) (EventID: 10010) (User: MB1-PC)
Description: Server {94269C4E-071A-4116-90E6-52E557067E4E} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/04/2024 12:58:43 PM) (Source: DCOM) (EventID: 10010) (User: MB1-PC)
Description: Server Microsoft.WindowsFeedbackHub_1.2405.21481.0_x64__8wekyb3d8bbwe!App.AppX8a6w88secebzyje9nrqc47xt488tkbmc.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/04/2024 12:23:39 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (08/04/2024 12:23:37 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (08/04/2024 12:23:35 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (08/04/2024 12:23:33 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (08/04/2024 12:23:30 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error: (08/04/2024 12:23:28 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.


CodeIntegrity:
===============
Date: 2024-07-27 15:57:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-07-27 15:57:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. V1.10 07/10/2018
Motherboard: MSI H81M-P33 (MS-7817)
Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 88%
Total physical RAM: 3974.02 MB
Available physical RAM: 465.21 MB
Total Virtual: 8070.02 MB
Available Virtual: 2682.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.19 GB) (Free:16.61 GB) (Model: KINGSTON SV300S37A120G) NTFS
Drive d: (Nový svazek) (Fixed) (Total:698.64 GB) (Free:247.98 GB) (Model: WDC WD7500AZEX-00RKKA0) NTFS

\\?\Volume{0f50f6c3-ad63-11e5-bd09-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{a25c33b0-0000-0000-0000-80d21b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: A25C33B0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=512 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 980826B8)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Děkuji

Ahoj,
citat:
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.
Otestuj disk s chkdsk prip. Hdtune free

Microsoft Windows [Version 10.0.19045.4651]
(c) Microsoft Corporation. Všechna práva vyhrazena.

C:\WINDOWS\system32>CHKDSK
The type of the file system is NTFS.

WARNING! /F parameter not specified.
Running CHKDSK in read-only mode.

Stage 1: Examining basic file system structure ...
984832 file records processed.
File verification completed.
Phase duration (File record verification): 15.76 seconds.
24145 large file records processed.
Phase duration (Orphan file record recovery): 0.00 milliseconds.
0 bad file records processed.
Phase duration (Bad file record checking): 0.40 milliseconds.

Stage 2: Examining file name linkage ...
926 reparse records processed.
1468950 index entries processed.
Index verification completed.
Phase duration (Index verification): 1.97 minutes.
0 unindexed files scanned.
Phase duration (Orphan reconnection): 10.74 seconds.
0 unindexed files recovered to lost and found.
Phase duration (Orphan recovery to lost and found): 1.26 milliseconds.
926 reparse records processed.
Phase duration (Reparse point and Object ID verification): 12.29 milliseconds.

Stage 3: Examining security descriptors ...
Security descriptor verification completed.
Phase duration (Security descriptor verification): 159.17 milliseconds.
242060 data files processed.
Phase duration (Data attribute verification): 1.43 milliseconds.
CHKDSK is verifying Usn Journal...
36767024 USN bytes processed.
Usn Journal verification completed.
Phase duration (USN journal verification): 237.89 milliseconds.

Windows has scanned the file system and found no problems.
No further action is required.

116590886 KB total disk space.
98123736 KB in 515910 files.
571540 KB in 242061 indexes.
0 KB in bad sectors.
1097426 KB in use by the system.
65536 KB occupied by the log file.
16798184 KB available on disk.

4096 bytes in each allocation unit.
29147721 total allocation units on disk.
4199546 allocation units available on disk.
Total duration: 2.42 minutes (145489 ms).

C:\WINDOWS\system32>

Ten disk je dobry, ale treba otestovat ten druhy disk:
chkdsk d:

Microsoft Windows [Version 10.0.19045.4651]
(c) Microsoft Corporation. Všechna práva vyhrazena.

C:\WINDOWS\system32>chkdsk d:
The type of the file system is NTFS.
Volume label is Nový svazek.

WARNING! /F parameter not specified.
Running CHKDSK in read-only mode.

Stage 1: Examining basic file system structure ...
83456 file records processed.
File verification completed.
Phase duration (File record verification): 1.46 seconds.
659 large file records processed.
Phase duration (Orphan file record recovery): 0.00 milliseconds.
0 bad file records processed.
Phase duration (Bad file record checking): 0.33 milliseconds.

Stage 2: Examining file name linkage ...
10800 reparse records processed.
91238 index entries processed.
Index verification completed.
Phase duration (Index verification): 19.62 seconds.
0 unindexed files scanned.
Phase duration (Orphan reconnection): 17.93 milliseconds.
0 unindexed files recovered to lost and found.
Phase duration (Orphan recovery to lost and found): 1.22 milliseconds.
10800 reparse records processed.
Phase duration (Reparse point and Object ID verification): 36.59 milliseconds.

Stage 3: Examining security descriptors ...
Security descriptor verification completed.
Phase duration (Security descriptor verification): 12.01 milliseconds.
3892 data files processed.
Phase duration (Data attribute verification): 2.13 milliseconds.
CHKDSK is verifying Usn Journal...
149678656 USN bytes processed.
Usn Journal verification completed.
Phase duration (USN journal verification): 1.39 seconds.

Windows has scanned the file system and found no problems.
No further action is required.

732572000 KB total disk space.
478048276 KB in 78829 files.
34784 KB in 3893 indexes.
0 KB in bad sectors.
318040 KB in use by the system.
65536 KB occupied by the log file.
254170900 KB available on disk.

4096 bytes in each allocation unit.
183143000 total allocation units on disk.
63542725 allocation units available on disk.
Total duration: 22.54 seconds (22547 ms).

C:\WINDOWS\system32>

Sice to nechapem, ale aj toto je OK
Spust este s prikazoveho riadku
sfc /scannow
a mame hotovo

Microsoft Windows [Version 10.0.19045.4651]
(c) Microsoft Corporation. Všechna práva vyhrazena.

C:\WINDOWS\system32>sfc /scannow

Beginning system scan. This process will take some time.

Beginning verification phase of system scan.
Verification 100% complete.

Windows Resource Protection found corrupt files and successfully repaired them.
For online repairs, details are included in the CBS log file located at
windir\Logs\CBS\CBS.log. For example C:\Windows\Logs\CBS\CBS.log. For offline
repairs, details are included in the log file provided by the /OFFLOGFILE flag.

C:\WINDOWS\system32>

Nejake chyby boli opravene, ak nie su problemy - hotovo

Děkuji

Rado sa stalo