VIRY.CZ

Dobrý den, notebook starý cca 1,5 roku mi často vyhazuje chybové hlášky a vyskakují na něm černá okna, jako když se píše do příkazového řádku. Poslední dva dny mi tak cca 7x za hodinu vyhazuje chybovou hlášku, že nelze rozpoznat a připojit USB zařízení, ačkoliv žádné nepřipojuji a v mnoha případech na PC ani nesahám. Prosím o kontrolu. Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by verad (administrator) on LAPTOP-USMV4AAF (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop E410MAB_E410MA) (28-10-2024 02:30:11)
Running from C:\Users\verad\OneDrive\Plocha\FRST64.exe
Loaded Profiles: verad
Platform: Microsoft Windows 11 Home Version 23H2 22631.4317 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusOSD.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.28801.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.52\msedgewebview2.exe <6>
(DriverStore\FileRepository\asusnumpadfilter.inf_amd64_8ad0e7749c9f2c5c\AsusNumPadService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_8ad0e7749c9f2c5c\AsusInputlocaleMonitor.exe
(DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEM.exe
(explorer.exe ->) (5E725061-EB4B-47FD-B309-0B1348500865 -> C-Media Electronics, Inc.) C:\Program Files\WindowsApps\e2b691c9.c-media6549audiocontrolpanel_1.0.37.0_x64__y9kx1840xc4zw\VFS\ProgramFilesX86\C-Media Audio Control Panel\CMediaAudioControlPanel.exe
(explorer.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files\AdGuard\Adguard.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\NordVPN.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files\AdGuard\AdguardSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) C:\Windows\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\FSNifWeb\1727685338\fshoster64.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\x64\fshoster64.exe <3>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0a2eb8dac923ec42\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0a2eb8dac923ec42\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6a2f3d49c30e0a95\Intel_PIE_Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_570a90d182f53fa5\AsusPTPService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_8ad0e7749c9f2c5c\AsusNumPadService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fshoster64.exe <2>
(services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fsulprothoster.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.24.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\verad\AppData\Local\Microsoft\OneDrive\24.196.0929.0005\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe <3>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe [3498472 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Adguard] => C:\Program Files\AdGuard\Adguard.exe [7233056 2024-07-08] (Adguard Software Limited -> Adguard Software Limited)
HKU\S-1-5-21-2487588177-3669244720-460196055-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45227312 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-2487588177-3669244720-460196055-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\130.0.6723.70\Installer\chrmstp.exe [2024-10-25] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {E7B1BE82-A1F8-4F61-BA38-C6DB91AC58D3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {F83D2090-7D95-4A9A-B7A4-F6A3AFD67456} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusHotkey.exe [326120 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {EE5C1394-BC0D-4C1D-956F-EF6982BD4F70} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusUpdateChecker.exe [793040 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {279211AA-DA77-4B02-B8AB-623F315F9446} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {241BE3FE-301E-4BC5-80FF-389C37DDF84A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {57638A80-9B36-4DF8-97C4-8326049F9471} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "493583b1-0fff-4fbd-98a2-dd637e830ad9" --version "6.29.11342" --silent
Task: {3AE2825B-B851-470C-A701-BCD856D00BBF} - System32\Tasks\CCleanerSkipUAC - verad => C:\Program Files\CCleaner\CCleaner.exe [39090480 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {357EBE91-0F2D-417B-ABE4-F5BDB86CABF4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Windows.old\Users\verad\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-12-24] (ESET, spol. s r.o. -> ESET)
Task: {4F282D25-0ACE-43BE-94C5-2DA948B5F2C7} - System32\Tasks\EOSv3 Scheduler onTime => C:\Windows.old\Users\verad\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-12-24] (ESET, spol. s r.o. -> ESET)
Task: {06CEC7CA-7080-4B14-B9B8-195E814FA589} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\TOTAL\x64\fs_hotfix_64.exe [518536 2024-09-05] (F-Secure Corporation -> F-Secure Corporation)
Task: {8C9086C1-A839-4938-8AE3-50C02EC800DE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{476835C6-573C-481E-98FA-776EB7F33287} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {9FF408B5-C0B2-4E71-9976-C32E9C078A8F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28616920 2024-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9EA70795-ABA4-44B7-9594-8577BC6393B6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28616920 2024-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DE9FA70-6C98-403E-8616-E6AB05AEDA86} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312408 2024-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA2A245F-02B1-433C-8EBE-86BBFE66D32B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312408 2024-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8BEFEE7-6724-4E0E-9872-054DD14344ED} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187328 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {98D404F0-4FBD-4D88-8F28-CD1AFDFD276E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8CA9EF8E-0683-4C37-9233-ADA7D9DA7462} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6EADAF7-19A0-4EF3-9B91-2B36BADF58B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76065AFE-38AD-47F6-AFA0-820BBF5225F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C1DE02FF-AE15-4224-8575-D45BD295B00B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DCA2A10D-EDA3-42BF-8CAD-1A3FCC66D104} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2487588177-3669244720-460196055-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-04-24] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0bfae546-4b3f-45a2-919e-1b5a59b6463f}: [DhcpNameServer] 40.52.1.13
Tcpip\..\Interfaces\{d823f3a8-4281-4592-87bb-3574ee74f811}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d823f3a8-4281-4592-87bb-3574ee74f811}\449425630303: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d823f3a8-4281-4592-87bb-3574ee74f811}\65542555: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\verad\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-07]
Edge StartupUrls: Default -> "hxxps://www.google.com/"
Edge Extension: (Ochrana procházení internetu F-Secure) - C:\Users\verad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpikpibllpjmpnchjajlibnmmomnnhnm [2024-08-06]
Edge Extension: (Dokumenty Google offline) - C:\Users\verad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
Edge Extension: (Edge relevant text changes) - C:\Users\verad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Ochrana procházení internetu F-Secure) - C:\Users\verad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2024-08-06]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\verad\AppData\Local\Google\Chrome\User Data\Default [2024-10-28]
CHR Notifications: Default -> hxxps://coolcredit.cz; hxxps://hledamvztah.cz; hxxps://process.ferratum.cz; hxxps://www.facebook.com; hxxps://www.idnes.cz; hxxps://www.slevomat.cz; hxxps://www.viasms.cz; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (uBlock Origin) - C:\Users\verad\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-10-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\verad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-11]
CHR Extension: (Ochrana procházení internetu F-Secure) - C:\Users\verad\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2024-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\verad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-28]
CHR HKU\S-1-5-21-2487588177-3669244720-460196055-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Adguard Service; C:\Program Files\AdGuard\AdguardSvc.exe [806944 2024-07-08] (Adguard Software Limited -> Adguard Software Limited)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\AsusAppService\AsusAppService.exe [1176016 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusNumPadService; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_8ad0e7749c9f2c5c\AsusNumPadService.exe [248784 2023-10-17] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusOptimization.exe [577384 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilter.inf_amd64_570a90d182f53fa5\AsusPTPService.exe [207248 2021-07-07] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSoftwareManager\AsusSoftwareManager.exe [1389032 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSwitch\AsusSwitch.exe [650704 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [1096656 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 C-MediaAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_56ce4d8646932f07\C-MediaAudioService.exe [309672 2022-08-25] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861072 2024-10-14] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [442368 2023-12-18] (DTS, Inc. -> DTS Inc.)
R2 fshoster; C:\Program Files (x86)\F-Secure\TOTAL\x64\fshoster64.exe [257416 2024-09-05] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\TOTAL\x64\fshoster64.exe [257416 2024-09-05] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnifwebhoster; C:\Program Files (x86)\F-Secure\TOTAL\FSNifWeb\1727685338\fshoster64.exe [409480 2024-09-30] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fshoster64.exe [757832 2024-09-30] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fshoster64.exe [757832 2024-09-30] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fsulprothoster.exe [757832 2024-09-30] (WithSecure Oyj -> WithSecure Corporation)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-08-09] (The Document Foundation -> The Document Foundation)
S3 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_768b84b9afa518ce\mcafeeintegrationservice.exe [3978480 2021-10-19] (McAfee, LLC -> McAfee)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [88744 2024-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Limited)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [150840 2021-07-07] (Alcorlink Corp. -> )
R3 AsusKeyboard; C:\WINDOWS\System32\DriverStore\FileRepository\asuskeyboardfilter.inf_amd64_6fbbe83cea52d4be\AsusKeyboardFilter.sys [75216 2023-10-17] (ASUSTeK COMPUTER INC. -> Human Interface Tech.)
S3 AsusNumpadKbd; C:\WINDOWS\System32\DriverStore\FileRepository\asusdigifilterkbd.inf_amd64_33fae209850d2cb7\AsusDigiFilter.sys [144344 2021-07-07] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_8ad0e7749c9f2c5c\AsusNUMPADFilter.sys [227800 2023-10-17] (ASUSTeK COMPUTER INC. -> Human Interface Tech.)
S3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [115176 2021-07-08] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSystemAnalysis\AsusSAIO.sys [49320 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSOptimization\AsusWmiAcpi.sys [49096 2024-09-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2024-05-30] (Microsoft Corporation) [File not signed]
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fsulgk.sys [484536 2024-09-30] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation)
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [17400 2023-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> WithSecure Corporation)
R2 fsnif2; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\nif2\1727097942\nif2s64.sys [185920 2024-10-01] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation)
S3 GSCAuxDriver; C:\WINDOWS\System32\DriverStore\FileRepository\gscauxdriver.inf_amd64_47dea9773e9dfab7\GSCAuxDriverx64.sys [79584 2021-08-30] (Intel Corporation -> Intel Corporation)
S3 GSCx64; C:\WINDOWS\System32\DriverStore\FileRepository\gscheci.inf_amd64_1027aa064fe1f3f7\TeeDriverGSCW8x64.sys [260400 2021-08-30] (Intel Corporation -> Intel Corporation)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [52640 2021-10-19] (McAfee, LLC -> McAfee)
R2 NDivert; C:\Program Files\NordVPN\7.29.4.0\Drivers\NDivert.sys [131472 2024-09-13] (nordvpn s.a. -> Nordvpn S.A.)
R3 ovpn-dco; C:\WINDOWS\System32\drivers\ovpn-dco.sys [92664 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [41120 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-28 02:30 - 2024-10-28 02:31 - 000029391 _____ C:\Users\verad\OneDrive\Plocha\FRST.txt
2024-10-28 02:29 - 2024-10-28 02:30 - 000000000 ____D C:\FRST
2024-10-28 02:27 - 2024-10-28 02:27 - 002397696 _____ (Farbar) C:\Users\verad\OneDrive\Plocha\FRST64.exe
2024-10-28 02:18 - 2024-10-28 02:21 - 2074997042 _____ C:\Users\verad\Downloads\My+(2019)HDrip+-+CZ+dabing...M3.mkv
2024-10-27 21:59 - 2024-10-27 22:06 - 029827716 _____ C:\Users\verad\Downloads\Skleneny+pokoj+2019+CZ.mkv
2024-10-26 18:26 - 2024-10-26 18:29 - 1527052587 _____ C:\Users\verad\Downloads\Velké+dobrodružství+Čtyřlístku+(r.2019+-+1920x1080).mkv
2024-10-26 16:31 - 2024-10-26 16:32 - 734058496 _____ C:\Users\verad\Downloads\Mezi námi děvčaty.avi
2024-10-24 17:27 - 2024-10-24 17:27 - 000694044 _____ C:\WINDOWS\system32\perfh005.dat
2024-10-24 17:27 - 2024-10-24 17:27 - 000143898 _____ C:\WINDOWS\system32\perfc005.dat
2024-10-23 18:05 - 2024-10-23 18:05 - 000000000 ____D C:\WINDOWS\Panther
2024-10-19 18:57 - 2024-10-19 19:09 - 448133700 _____ C:\Users\verad\Downloads\Létající+Čestmír+s01e03+CZ+dab+1080p+10kbs.mov
2024-10-12 08:49 - 2024-10-12 08:49 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-10-04 11:49 - 2024-10-04 11:49 - 000000000 ____D C:\Users\verad\AppData\Local\Adguard_Software_Limited
2024-10-04 11:48 - 2024-10-04 11:48 - 000000000 ____D C:\Users\verad\AppData\Roaming\Adguard Software Limited
2024-10-04 11:46 - 2024-10-23 18:05 - 000000000 ____D C:\Program Files\AdGuard
2024-10-04 11:46 - 2024-10-04 11:47 - 000001940 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard.lnk
2024-10-04 11:45 - 2024-10-28 02:13 - 000000000 ____D C:\ProgramData\Adguard
2024-10-04 11:44 - 2024-10-04 11:44 - 000145952 _____ (Adguard Software Ltd) C:\Users\verad\Downloads\adguardInstaller.exe
2024-10-03 07:43 - 2024-10-03 07:43 - 000206994 _____ C:\Users\verad\Downloads\Vypis z uctu 1617353011 za 09-2024.pdf
2024-10-03 07:42 - 2024-10-03 07:42 - 000202819 _____ C:\Users\verad\Downloads\Vypis z uctu 1617353011 za 07-2024.pdf
2024-10-03 07:42 - 2024-10-03 07:42 - 000194446 _____ C:\Users\verad\Downloads\Vypis z uctu 1617353011 za 08-2024 (1).pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-28 02:29 - 2023-12-28 08:34 - 000000277 _____ C:\ProgramData\CMediaAudioControlPanelData.ini
2024-10-28 02:29 - 2023-12-28 07:45 - 000000000 ____D C:\WINDOWS\INF
2024-10-28 02:20 - 2023-12-28 08:51 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-10-27 21:40 - 2023-12-28 08:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-27 21:34 - 2023-12-28 07:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-27 21:22 - 2023-12-29 22:22 - 000000000 ____D C:\Users\verad\AppData\Roaming\vlc
2024-10-27 14:05 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-27 08:05 - 2023-12-28 07:47 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-27 08:05 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-27 07:29 - 2023-12-28 09:10 - 000000000 ____D C:\Program Files\CCleaner
2024-10-27 07:29 - 2023-08-25 13:46 - 000000000 ___RD C:\Users\verad\OneDrive
2024-10-27 07:28 - 2023-08-25 13:40 - 000000000 __SHD C:\Users\verad\IntelGraphicsProfiles
2024-10-26 23:38 - 2023-12-28 07:42 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-26 16:37 - 2023-12-28 08:01 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-25 19:35 - 2024-07-25 11:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-10-25 06:51 - 2023-12-28 08:41 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-10-25 00:09 - 2023-12-28 08:09 - 000000000 ____D C:\Users\verad
2024-10-24 17:27 - 2023-12-28 08:17 - 001630358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-24 17:19 - 2023-12-28 08:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-24 17:19 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-24 17:19 - 2023-08-25 22:23 - 000000000 ____D C:\Intel
2024-10-24 17:18 - 2023-08-25 22:23 - 000012288 ___SH C:\DumpStack.log.tmp
2024-10-24 15:48 - 2023-12-31 03:51 - 000000000 ____D C:\Users\verad\AppData\Local\NordVPN
2024-10-24 15:47 - 2023-12-31 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2024-10-24 15:47 - 2023-12-31 03:50 - 000000000 ____D C:\Program Files\NordVPN
2024-10-23 18:08 - 2023-12-28 09:10 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-10-23 18:05 - 2023-12-28 09:10 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-10-23 18:04 - 2023-12-28 07:41 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-10-23 13:10 - 2023-12-28 08:37 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2487588177-3669244720-460196055-1001
2024-10-23 13:10 - 2023-12-28 08:37 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2487588177-3669244720-460196055-1001
2024-10-23 13:10 - 2023-12-28 08:37 - 000002379 _____ C:\Users\verad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-23 12:14 - 2023-12-28 07:47 - 000000000 ____D C:\ProgramData\USOPrivate
2024-10-23 11:34 - 2023-12-28 08:33 - 000000000 ____D C:\Users\verad\AppData\Local\Packages
2024-10-21 09:12 - 2023-12-28 08:36 - 000000000 ____D C:\Users\verad\AppData\Local\D3DSCache
2024-10-20 18:11 - 2023-12-28 20:04 - 000000000 ____D C:\Users\verad\AppData\Local\CrashDumps
2024-10-18 20:38 - 2023-12-28 07:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-10-18 20:38 - 2021-10-04 22:54 - 000000000 ____D C:\Program Files\Microsoft Office
2024-10-17 19:42 - 2023-12-28 09:10 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-10-13 20:23 - 2024-07-20 13:51 - 000003882 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2024-10-13 20:23 - 2024-07-20 13:51 - 000003440 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2024-10-13 20:23 - 2024-07-20 11:21 - 000001550 _____ C:\Users\verad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-10-11 00:24 - 2024-08-22 15:38 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-10-11 00:24 - 2023-12-28 08:01 - 000619320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-11 00:23 - 2023-12-28 07:52 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-10-11 00:23 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-11 00:23 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-10-11 00:23 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-11 00:23 - 2023-12-28 07:47 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-10 19:15 - 2024-07-25 11:58 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-10-10 09:10 - 2023-12-28 13:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-10-10 08:44 - 2023-12-28 13:59 - 201324920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-10-09 19:30 - 2023-12-28 08:11 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-09 19:30 - 2023-12-28 08:11 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-04 11:45 - 2023-12-28 08:44 - 000000000 ____D C:\ProgramData\Package Cache
2024-10-03 17:06 - 2023-12-28 08:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\F-Secure
2024-10-03 17:03 - 2023-12-28 08:44 - 000000000 ____D C:\Program Files\dotnet
2024-10-03 08:12 - 2023-12-29 05:50 - 000001428 _____ C:\Users\verad\OneDrive\Plocha\ESET Online Scanner.lnk
2024-10-01 10:37 - 2023-12-28 08:11 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2024-10-01 10:37 - 2023-12-28 08:11 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3

==================== Files in the root of some directories ========

2024-08-20 13:17 - 2024-08-20 13:17 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by verad (28-10-2024 02:33:50)
Running from C:\Users\verad\OneDrive\Plocha
Microsoft Windows 11 Home Version 23H2 22631.4317 (X64) (2023-12-28 07:17:20)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2487588177-3669244720-460196055-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2487588177-3669244720-460196055-503 - Limited - Disabled)
Guest (S-1-5-21-2487588177-3669244720-460196055-501 - Limited - Disabled)
verad (S-1-5-21-2487588177-3669244720-460196055-1001 - Administrator - Enabled) => C:\Users\verad
WDAGUtilityAccount (S-1-5-21-2487588177-3669244720-460196055-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: F-Secure (Disabled - Up to date) {DA5F8466-F00B-8E6B-6CB8-5AE55C9EBDCD}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov)
AdGuard (HKLM\...\{A8CDCD01-B65F-4169-A3A9-F13EEBA31ED3}) (Version: 7.18.4778.0 - Adguard Software Limited) Hidden
AdGuard (HKLM-x32\...\{b19c26fb-8052-47ef-840e-b5f2fe6b3e04}) (Version: 7.18.4778.0 - Adguard Software Limited)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 24.003.20180 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.29 - Piriform)
F-Secure (HKLM\...\{2A0EB4AE-77E6-41B1-8908-61157F04AF07}) (Version: 19.6 - F-Secure Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 130.0.6723.70 - Google LLC)
Kouzelné dárky (HKLM-x32\...\{Kouzelne darky}_is1) (Version: - Spidla Data Processing, s.r.o.)
LibreOffice 24.8.0.3 (HKLM\...\{0E49FCED-3C8B-4382-A39B-398B6122D44D}) (Version: 24.8.0.3 - The Document Foundation)
Microsoft .NET Host - 6.0.32 (x64) (HKLM\...\{A09F8381-88C3-44C4-9DAB-AC44F4F4DB4B}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.32 (x64) (HKLM\...\{667CB653-70E1-4E2B-9C8E-6A02A6CF88B9}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.32 (x64) (HKLM\...\{3FDCF0A2-7C1F-41C7-9749-0D91EC216AED}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft 365 - en-gb (HKLM\...\O365HomePremRetail - en-gb) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft 365 - hu-hu (HKLM\...\O365HomePremRetail - hu-hu) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 130.0.2849.56 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 130.0.2849.52 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2487588177-3669244720-460196055-1001\...\OneDriveSetup.exe) (Version: 24.196.0929.0005 - Microsoft Corporation)
Microsoft OneNote - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft OneNote - en-gb (HKLM\...\OneNoteFreeRetail - en-gb) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft OneNote - hu-hu (HKLM\...\OneNoteFreeRetail - hu-hu) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft OneNote - pl-pl (HKLM\...\OneNoteFreeRetail - pl-pl) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft OneNote - sk-sk (HKLM\...\OneNoteFreeRetail - sk-sk) (Version: 16.0.18025.20160 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM\...\{885F1CFB-4EAC-4C60-97B8-394BD65ED91E}) (Version: 48.128.16742 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM-x32\...\{1bb295e8-8251-4404-96f1-c437da87fce0}) (Version: 6.0.32.33814 - Microsoft Corporation)
Noc plná kouzel (HKLM-x32\...\{Noc plna kouzel}_is1) (Version: - Spidla Data Processing, s.r.o.)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.4.821 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.29.4.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.18025.20126 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
Záchvěv - Ztracená stopařka (HKLM-x32\...\{Zachvev - Ztracena stoparka}_is1) (Version: - Spidla Data Processing, s.r.o.)
Zoom (HKU\S-1-5-21-2487588177-3669244720-460196055-1001\...\ZoomUMX) (Version: 5.17.2 (29988) - Zoom Video Communications, Inc.)

Packages:
=========

5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2024-10-25] (McAfee LLC.)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5635.0_x64__8j3eq9eme6ctt [2024-09-14] (INTEL CORP) [Startup Task]
C-Media6549AudioControlPanel -> C:\Program Files\WindowsApps\e2b691c9.c-media6549audiocontrolpanel_1.0.37.0_x64__y9kx1840xc4zw [2023-12-28] (C-Media Electronics Inc.) [Startup Task]
Dev Home (Preview) -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1801.640.0_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft Corporation) [Startup Task]
DTS Audio Processing -> C:\Program Files\WindowsApps\dtsinc.dtsaudioprocessing_1.10.15.0_x64__t5j2fzbtdg37r [2023-12-28] (DTS, Inc.)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-08] (Microsoft Corporation) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.38.0_x64__w1wdnht996qgy [2024-10-09] (LinkedIn) [Startup Task]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2409.21002.0_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft Corporation) [Startup Task]
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.1.0.0_x64__8wekyb3d8bbwe [2024-10-24] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.181.0_x64__8wekyb3d8bbwe [2024-10-27] (Microsoft Corporation) [Startup Task]
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.24.0_x64__cw5n1h2txyewy [2024-10-19] (Microsoft Windows) [Startup Task]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.24.0_x64__qmba6cd70vzyy [2024-10-01] (ASUSTeK COMPUTER INC.)
Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2410.202.0_x64__8wekyb3d8bbwe [2024-10-23] (Microsoft Corporation) [Startup Task]
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe [2024-09-14] (Microsoft Corporation)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-10] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.266.2241.0_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-03-21] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2487588177-3669244720-460196055-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2487588177-3669244720-460196055-1001_Classes\CLSID\{446889A0-340F-4CC6-84B2-77A832AE2176}\localserver32 -> C:\Program Files (x86)\F-Secure\TOTAL\x64\fshoster64.exe (F-Secure Corporation -> F-Secure Corporation)
CustomCLSID: HKU\S-1-5-21-2487588177-3669244720-460196055-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> nordvpn S.A.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-03-21 11:57 - 2023-06-20 09:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-10-04 22:55 - 2021-10-04 22:55 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2021-10-04 22:55 - 2021-10-04 22:55 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:gs5sys [5120]
AlternateDataStreams: C:\Users\All Users:gs5sys [5120]
AlternateDataStreams: C:\Users\verad:gs5sys [19458]
AlternateDataStreams: C:\ProgramData\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Local Settings:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\Soubory cookie:gs5sys [20482]
AlternateDataStreams: C:\Users\verad\Šablony:gs5sys [19458]
AlternateDataStreams: C:\Users\verad\OneDrive\Plocha\desktop.ini:gs5sys [4352]
AlternateDataStreams: C:\Users\verad\AppData\Local:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Roaming:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\AppData\Local\Data aplikací:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Local\History:gs5sys [3840]
AlternateDataStreams: C:\Users\verad\OneDrive\Dokumenty\desktop.ini:gs5sys [3840]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-06-05 13:08 - 2021-06-05 13:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2487588177-3669244720-460196055-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\verad\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\10474630834333743249\133745283293979806.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti: TAP-NordVPN Windows Adapter V9 -> tapnordvpn.sys
Wi-Fi: Intel(R) Wireless-AC 9461 -> Netwtw08.sys
OpenVPN Data Channel Offload for NordVPN: OpenVPN Data Channel Offload -> ovpn-dco.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A69D9491-6A97-43AE-80D0-2F9936084339}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2236AA02-DA6F-44B2-B57E-1FA2E9784CA9}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{C3725775-D0DE-4E54-A293-A0DE5D7DAA0D}] => (Allow) C:\Users\verad\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{2D416F47-216D-471D-996F-BE8259CB6671}] => (Allow) C:\Users\verad\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9B34DDE8-3DF7-4C3B-83B8-0A1C0FA77819}] => (Allow) C:\Users\verad\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{658312F9-A238-4B5E-B683-46DE297F6F38}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DC359FF-C8A6-4FDB-BBD4-B5364400508D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D2BFBF5A-7C62-4462-920A-014F2E17E416}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AD7BCDAF-D173-4D1F-943F-85C7E669C7C1}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.24.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{8368DF7F-0264-498B-9900-7C8D5B7633E4}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.24.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{3CFD33D8-45A5-4345-8EC8-04E59EF08367}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.24.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{D39920DD-438B-42C2-B0F5-19A65AF6AE66}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.24.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{A6F534B5-07CF-4FAB-98AB-58DD36003B5D}] => (Allow) C:\Program Files\AdGuard\AdguardSvc.exe (Adguard Software Limited -> Adguard Software Limited)
FirewallRules: [{757FE82C-9DB2-412A-9E0F-CCE8F0255716}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.89\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{47F39E98-A156-4DE0-B146-B18608330002}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{19FE2B0F-4F2B-4D50-A2C8-4D4A752DA5F4}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{A288B02B-ED95-4D5F-B2D5-C4BC9FD4C006}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_a61e5ab0aed04d3c\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{7B2B9A6F-7CB9-4BF3-9BEE-B0CCA25B645C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:117.95 GB) (Free:9.06 GB) (8%)

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/23/2024 06:04:40 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: nordvpn-service.exe, verze: 1.1.0.34, časové razítko: 0x65112d57
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.22621.4249, časové razítko: 0x0cf64c6a
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000005fe4c
ID chybujícího procesu: 0x0x36d4
Čas spuštění chybující aplikace: 0x0x1db1ee55ad0da92
Cesta k chybující aplikaci: C:\Program Files\NordVPN\nordvpn-service.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: bd9b4abb-b93f-421f-874a-e078c3c54c42
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/20/2024 06:11:14 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.22621.4111, časové razítko: 0x510decf8
Název chybujícího modulu: dtstech64.dll, verze: 4.14.0.0, časové razítko: 0x6555cd1f
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004a2fb
ID chybujícího procesu: 0x0x1460
Čas spuštění chybující aplikace: 0x0x1db231310d33903
Cesta k chybující aplikaci: C:\WINDOWS\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\System32\DTS\PC\APO4x\dtstech64.dll
ID zprávy: 944fba18-9cb3-422c-8216-ad19ef2c965f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/20/2024 06:11:13 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-USMV4AAF)
Description: Název chybující aplikace: PickerHost.exe, verze: 10.0.22621.3672, časové razítko: 0x27c732c1
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.22621.4249, časové razítko: 0x6ba81271
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000059daf1
ID chybujícího procesu: 0x0x2acc
Čas spuštění chybující aplikace: 0x0x1db23130e635217
Cesta k chybující aplikaci: C:\Windows\System32\PickerHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: bfa5eebc-559c-4a27-ba20-c4083fa5ed85
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/20/2024 04:20:33 PM) (Source: Adguard) (EventID: 0) (User: )
Description: Switching logger to invalid state because of System.InvalidOperationException: Nelze zapisovat do souboru protokolu, protože při zápisu by došlo ke snížení volného místa na disku určeného hodnotou ReservedSpace.
Source: Microsoft.VisualBasic
Stack trace: v Microsoft.VisualBasic.Logging.FileLogTraceListener.ResourcesAvailable(Int64 newEntrySize)
v Microsoft.VisualBasic.Logging.FileLogTraceListener.WriteLine(String message)
v NDhGGhjvcLOn3MZBcRy.CAFpXTdRZB(Object , String , NDhGGhjvcLOn3MZBcRy )
v AdGuard.Utils.Base.Logging.TraceListeners.SimpleFileTraceListener.WriteLine(String message)
v AdGuard.Utils.Base.Logging.Logger.h8d6dtE2tmp8HJaJ8iy(Object , Object )
v AdGuard.Utils.Base.Logging.Logger.EBF0aDcTmj(LogLevel , Object )

Error: (10/20/2024 04:20:33 PM) (Source: Adguard) (EventID: 0) (User: )
Description: Switching logger to invalid state because of System.InvalidOperationException: Nelze zapisovat do souboru protokolu, protože při zápisu by došlo ke snížení volného místa na disku určeného hodnotou ReservedSpace.
Source: Microsoft.VisualBasic
Stack trace: v Microsoft.VisualBasic.Logging.FileLogTraceListener.ResourcesAvailable(Int64 newEntrySize)
v Microsoft.VisualBasic.Logging.FileLogTraceListener.WriteLine(String message)
v NDhGGhjvcLOn3MZBcRy.CAFpXTdRZB(Object , String , NDhGGhjvcLOn3MZBcRy )
v AdGuard.Utils.Base.Logging.TraceListeners.SimpleFileTraceListener.WriteLine(String message)
v AdGuard.Utils.Base.Logging.Logger.h8d6dtE2tmp8HJaJ8iy(Object , Object )
v AdGuard.Utils.Base.Logging.Logger.EBF0aDcTmj(LogLevel , Object )

Error: (10/18/2024 08:37:02 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: LAPTOP-USMV4AAF)
Description: Aplikaci nebo službu Microsoft Office SDX Helper nelze ukončit.

Error: (10/10/2024 08:21:10 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-USMV4AAF)
Description: Název chybující aplikace: SearchHost.exe, verze: 2124.22709.10.0, časové razítko: 0x66e39f11
Název chybujícího modulu: SearchUx.InternalWebApi.dll, verze: 2124.22709.10.0, časové razítko: 0x66e39a54
Kód výjimky: 0x80000003
Posun chyby: 0x000000000006c052
ID chybujícího procesu: 0x0x283c
Čas spuštění chybující aplikace: 0x0x1db1ae434f68e39
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchUx.InternalWebApi.dll
ID zprávy: e5c78702-992b-48f5-811c-2fa51c228e6d
Úplný název chybujícího balíčku: MicrosoftWindows.Client.CBS_1000.22700.1041.0_x64__cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (10/09/2024 08:36:45 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

System errors:
=============
Error: (10/26/2024 11:38:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 2024-10 Kumulativní aktualizace (Preview) pro Windows 11 Version 23H2 pro systémy založené na platformě x64 (KB5044380).

Error: (10/25/2024 05:18:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 2024-10 Kumulativní aktualizace (Preview) pro Windows 11 Version 23H2 pro systémy založené na platformě x64 (KB5044380).

Error: (10/25/2024 05:15:46 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-USMV4AAF)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/25/2024 05:10:48 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.

Error: (10/24/2024 05:21:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/24/2024 05:21:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (120000 ms).

Error: (10/24/2024 05:19:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:11:34, ‎24.‎10.‎2024) bylo neočekávané.

Error: (10/24/2024 04:42:04 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 2024-10 Kumulativní aktualizace (Preview) pro Windows 11 Version 23H2 pro systémy založené na platformě x64 (KB5044380).

Windows Defender:
================
Date: 2024-10-27 14:05:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {07DF0859-1AFE-4519-A471-2CCCC1F28B50}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-26 13:34:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {039CFF76-F7B8-49EE-886B-E2BEEE92E330}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-25 23:05:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {41E8D73E-8CE7-4C83-B6C2-FD30BD49A549}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-25 22:49:27
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CBBCC04D-08EE-4890-AC55-FF181F06EDA6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-25 22:22:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {74B008F1-F56C-4C2C-9EFE-29C9B4F4A5DC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2024-10-09 09:37:59
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Zálohování
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Verze bezpečnostních informací: 1.419.402.0;1.419.402.0
Verze modulu: 1.1.24080.9

Date: 2024-10-09 09:37:59
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80501102
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Verze bezpečnostních informací: 1.419.414.0;1.419.414.0
Verze modulu: 1.1.24080.9

Date: 2024-09-19 11:01:45
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.419.31.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24080.9
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2024-02-05 19:10:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.403.2990.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23110.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2024-02-05 19:10:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.403.2990.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23110.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2024-10-28 02:14:10
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1726727565\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. E410MAB.304 02/08/2022
Motherboard: ASUSTeK COMPUTER INC. E410MAB
Processor: Intel(R) Celeron(R) N4020 CPU @ 1.10GHz
Percentage of memory in use: 83%
Total physical RAM: 3918.76 MB
Available physical RAM: 647.39 MB
Total Virtual: 7758.76 MB
Available Virtual: 1274.41 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:117.95 GB) (Free:9.06 GB) (Model: KINGSTON OM8PDP3128B-AB1) NTFS

\\?\Volume{8e64119b-19f4-454b-ac83-db9072348682}\ (RECOVERY) (Fixed) (Total:0.83 GB) (Free:0.15 GB) NTFS
\\?\Volume{a22388f6-f1e3-4553-a4ad-cc19e7c9abe1}\ (MYASUS) (Fixed) (Total:0.19 GB) (Free:0.12 GB) FAT32
\\?\Volume{c684c37e-9143-4658-8e95-c1e377b4599c}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: F84CF8D5)

Partition: GPT.

==================== End of Addition.txt =======================

Zdravfím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Děkuji

# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2024
# Duration: 00:00:04
# OS: Windows 11 (Build 22631.4317)
# Cleaned: 0
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1420 octets] - [28/10/2024 10:19:37]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
Task: {98D404F0-4FBD-4D88-8F28-CD1AFDFD276E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8C9086C1-A839-4938-8AE3-50C02EC800DE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{476835C6-573C-481E-98FA-776EB7F33287} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
AlternateDataStreams: C:\ProgramData:gs5sys [5120]
AlternateDataStreams: C:\Users\All Users:gs5sys [5120]
AlternateDataStreams: C:\Users\verad:gs5sys [19458]
AlternateDataStreams: C:\ProgramData\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Local Settings:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\Soubory cookie:gs5sys [20482]
AlternateDataStreams: C:\Users\verad\Šablony:gs5sys [19458]
AlternateDataStreams: C:\Users\verad\OneDrive\Plocha\desktop.ini:gs5sys [4352]
AlternateDataStreams: C:\Users\verad\AppData\Local:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Roaming:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\AppData\Local\Data aplikací:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Local\History:gs5sys [3840]
AlternateDataStreams: C:\Users\verad\OneDrive\Dokumenty\desktop.ini:gs5sys [3840]
FirewallRules: [{A69D9491-6A97-43AE-80D0-2F9936084339}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2236AA02-DA6F-44B2-B57E-1FA2E9784CA9}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File

EmptyTemp:
End

Uložte do C:\Users\verad\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Ano, tady:

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by verad (28-10-2024 14:03:59) Run:1
Running from C:\Users\verad\OneDrive\Plocha
Loaded Profiles: verad
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {98D404F0-4FBD-4D88-8F28-CD1AFDFD276E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8C9086C1-A839-4938-8AE3-50C02EC800DE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{476835C6-573C-481E-98FA-776EB7F33287} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
AlternateDataStreams: C:\ProgramData:gs5sys [5120]
AlternateDataStreams: C:\Users\All Users:gs5sys [5120]
AlternateDataStreams: C:\Users\verad:gs5sys [19458]
AlternateDataStreams: C:\ProgramData\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Data aplikací:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\Local Settings:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\Soubory cookie:gs5sys [20482]
AlternateDataStreams: C:\Users\verad\Šablony:gs5sys [19458]
AlternateDataStreams: C:\Users\verad\OneDrive\Plocha\desktop.ini:gs5sys [4352]
AlternateDataStreams: C:\Users\verad\AppData\Local:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Roaming:gs5sys [5120]
AlternateDataStreams: C:\Users\verad\AppData\Local\Data aplikací:gs5sys [4096]
AlternateDataStreams: C:\Users\verad\AppData\Local\History:gs5sys [3840]
AlternateDataStreams: C:\Users\verad\OneDrive\Dokumenty\desktop.ini:gs5sys [3840]
FirewallRules: [{A69D9491-6A97-43AE-80D0-2F9936084339}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2236AA02-DA6F-44B2-B57E-1FA2E9784CA9}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File

EmptyTemp:
End

*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{98D404F0-4FBD-4D88-8F28-CD1AFDFD276E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98D404F0-4FBD-4D88-8F28-CD1AFDFD276E}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8C9086C1-A839-4938-8AE3-50C02EC800DE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C9086C1-A839-4938-8AE3-50C02EC800DE}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{476835C6-573C-481E-98FA-776EB7F33287} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{476835C6-573C-481E-98FA-776EB7F33287}" => removed successfully
HKLM\System\CurrentControlSet\Services\AVG Business Console Client Antivirus Service => removed successfully
AVG Business Console Client Antivirus Service => service removed successfully
HKLM\System\CurrentControlSet\Services\AVG Firewall => removed successfully
AVG Firewall => service removed successfully
HKLM\System\CurrentControlSet\Services\avgBcc => removed successfully
avgBcc => service removed successfully
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
C:\ProgramData => ":gs5sys" ADS removed successfully
"C:\Users\All Users" => ":gs5sys" ADS not found.
C:\Users\verad => ":gs5sys" ADS removed successfully
"C:\ProgramData\Data aplikací" => ":gs5sys" ADS not found.
C:\Users\verad\Data aplikací => ":gs5sys" ADS removed successfully
C:\Users\verad\Local Settings => ":gs5sys" ADS removed successfully
C:\Users\verad\Soubory cookie => ":gs5sys" ADS removed successfully
C:\Users\verad\Šablony => ":gs5sys" ADS removed successfully
C:\Users\verad\OneDrive\Plocha\desktop.ini => ":gs5sys" ADS removed successfully
"C:\Users\verad\AppData\Local" => ":gs5sys" ADS not found.
"C:\Users\verad\AppData\Roaming" => ":gs5sys" ADS not found.
"C:\Users\verad\AppData\Local\Data aplikací" => ":gs5sys" ADS not found.
C:\Users\verad\AppData\Local\History => ":gs5sys" ADS removed successfully
C:\Users\verad\OneDrive\Dokumenty\desktop.ini => ":gs5sys" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A69D9491-6A97-43AE-80D0-2F9936084339}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2236AA02-DA6F-44B2-B57E-1FA2E9784CA9}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11634159 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 421861454 B
Edge => 0 B
Chrome => 413338505 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 26 B
systemprofile32 => 26 B
LocalService => 3886 B
NetworkService => 91336 B
verad => 97874102 B
defaultuser100000 => 97884120 B
defaultuser100000.LAPTOP-USMV4AAF => 97893336 B

RecycleBin => 7730120408 B
EmptyTemp: => 8.3 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 14:05:12 ====

Smazáno. Nastala nějaká změna k lepšímu?

Hezký večer, zatím to vypadá v pořádku

Díky za pomoc.

To jsem rád! Nemáte zač.

VIRY.CZ

Chybové hlášky a vyskakovací okna

Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna

Re: Chybové hlášky a vyskakovací okna