VIRY.CZ

Dobrý večer,
v září jste mi pomohli vyřešit problém )https://forum.viry.cz/viewtopic.php?t=159948) do včerejška vše bez jediného výpadku.
Včera poprvé, dnes jsem opět měla problém se zasekáváním a spouštěním Pc.

nejsem si vědoma stažení nové aplikace, max. aktualizace win nebo Firefox...

Děkuji za kontrolu- posílám logy:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2024
Ran by safro (administrator) on DESKTOP-B59IHMH (HP HP ProDesk 400 G6 MT) (03-12-2024 19:24:26)
Running from C:\Users\safro\Desktop\FRST64.exe
Loaded Profiles: safro
Platform: Microsoft Windows 11 Pro Version 23H2 22631.4460 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe <6>
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\BridgeCommunication.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\HPHotkeyNotification.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Security Update Service\4.4.20.684\SecurityUpdateService.exe
(services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BemSvc.exe
(services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BrService.exe
(services.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5a1a129f026a7144\HotkeyServiceDSU.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5a1a129f026a7144\LanWlanWwanSwitchingServiceDSU.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc; HP Development Company, L.P.) C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196520 2024-11-01] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [1151608 2023-03-09] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM\...\Run: [HPOneAgentService] => C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2206248 2024-10-29] (HP Inc. -> HP Inc; HP Development Company, L.P.)
HKLM\...\Run: [HPSupportTool] => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-iolo-collector_ver_4.675.11370\hp-support-tool.exe [178216 2024-10-12] (HP Inc. -> HP Inc; HP Development Company, L.P.)
HKLM\...\Run: [HPAppInfoDataRetriever] => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-application-info-collector_ver_4.675.11370\hp-data-retriever.exe [168488 2024-10-21] (HP Inc. -> HP Inc; HP Development Company, L.P.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6206360 2021-03-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\Run: [BingSvc] => C:\Users\safro\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6638496 2022-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\Run: [MicrosoftEdgeAutoLaunch_8B3575D364394B552A9C25D557FBDA68] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-11-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [671808 2024-11-27] (Mozilla Corporation -> Mozilla Corporation)
HKLM\...\Windows x64\Print Processors\HPM1210PrintProc: C:\Windows\System32\spool\prtprocs\x64\HPM1210PP.dll [74240 2012-09-29] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPM1210LM: C:\WINDOWS\system32\HPM1210LM.DLL [409088 2012-09-29] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\130.0.27176.93\Installer\chrmstp.exe [2024-11-12] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.70\Installer\chrmstp.exe [2024-11-13] (Google LLC -> Google LLC)
AppInit_DLLs: C:\PROGRA~1\HP\SURECL~1\servers\BemHook.dll => C:\Program Files\HP\Sure Click\servers\BemHook.dll [1310984 2024-10-28] (Bromium UK Limited -> HP)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\safro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CEWE služba na pozadí.lnk [2023-07-26]
ShortcutTarget: CEWE služba na pozadí.lnk -> C:\Program Files\Fotolab\CEWE fotosvet\AutoBookService.exe () [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {F7EDB74F-EF07-4AF0-B19B-91DC826F19F6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {3EC33D0B-64CD-46FE-9BAA-CC43475BD936} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3188472 2024-11-06] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {9F3A6E60-E7D7-48A4-8CB8-2D5AC323C225} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3188472 2024-11-06] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {6928820A-4E0B-4BC1-A539-2A823B37A9F1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {B5FEABBF-D588-439B-A99D-1A49ABAC39DA} - System32\Tasks\CCleanerBrowserProtectS-1-5-21-3530282796-2492871232-3359154168-1001 => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowserProtect.exe [1717416 2024-04-23] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {50912B56-FFC3-4E31-8C93-21AAA6FE5BCE} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {33D8B201-B197-4459-B518-01695FC2C4C7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "1b033ce9-5206-4c97-920d-f6d40a1e501c" --version "6.30.11385" --silent
Task: {5900877C-211C-4DC6-AB3C-80F350DDD9AF} - System32\Tasks\CCleanerSkipUAC - safro => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {4919C92A-D5B9-4804-B247-AC2F4D880E13} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {88567D73-D7CB-4EE6-B7F4-0BC61083A718} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {2E6DA22B-035B-452E-8050-E6DDAD07AD67} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{80A58D93-CD4A-4041-9B61-3932CBCA7D0B} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884576 2024-10-15] (Google LLC -> Google LLC)
Task: {D94A009E-0BB2-4628-B521-C4F682638EFA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{41C235AC-2E35-4E5F-BEA1-AFBCB4742EFF} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-11-12] (Google LLC -> Google LLC)
Task: {5B517483-DB6D-402E-80AD-BB80EA230FF8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO
Task: {74316B36-7D10-4F03-A92B-D6F22ABDE9B1} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError
Task: {501CECD4-C31E-4E78-9696-E19F6E82D9D1} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF
Task: {3155A5EC-D6CD-4052-A480-FB652FA56E6F} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1
Task: {7228309C-D29A-4A93-A7DC-AB9AE08CF761} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2
Task: {EEDC1D84-D03A-4880-9827-37B4FA49CBC3} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI
Task: {97268EF1-ED16-468E-8A5F-C9DD07EDF538} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags:
Task: {1F862B8E-DB19-427F-A606-9CC6AC45D4CC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\WINDOWS\system32\cmd.exe [323584 2024-11-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError
Task: {2D6BCF35-3111-459A-81CC-E1AA30AB298C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1003016 2024-11-13] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {81F4C074-68D7-4840-99FB-F64AA5437684} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-11-13] (HP Inc. -> HP Inc.)
Task: {389EEA1C-6579-4DBF-B986-F95EDFA4E59F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231944 2024-11-13] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {8D502118-8950-44B8-AD26-20FB1A0CB24C} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {328498B9-F80C-4170-B2F7-546E0832B26B} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {B383D17A-C960-46F3-A577-FB3221423D43} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {F6D50F48-9B15-4C56-A827-21B2841EB2A1} - System32\Tasks\HP\HP Wolf Security\Launch Console => C:\Program Files\HP\HP Client Security Manager\HP.ClientSecurityManager.exe [262672 2024-06-05] (HP Inc. -> HP Inc.)
Task: {A1696579-89B9-4CEC-8518-8F5F8D99D9A2} - System32\Tasks\HP\Sure Click\Sure Click 4.4.19.1661 => C:\Program Files\HP\Sure Click\servers\BrLauncher.exe [2755336 2024-10-28] (Bromium UK Limited -> HP)
Task: {6B0DA9E7-E9BC-45EB-8274-BCC022A3A2A7} - System32\Tasks\HP\Sure Click\Sure Click UI 4.4.19.1661 => C:\Program Files\HP\Sure Click\servers\BrConsole.exe [169224 2024-10-28] (Bromium UK Limited -> HP)
Task: {8A59A006-099A-42F4-9040-46AA0067DDCD} - System32\Tasks\HPDataRetriever => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-application-info-collector_ver_4.675.11370\hp-data-retriever.exe [168488 2024-10-21] (HP Inc. -> HP Inc; HP Development Company, L.P.)
Task: {0CB26830-1288-4745-87BD-4E8F735AB774} - System32\Tasks\HPOneAgentRepairTask => C:\ProgramData\Package Cache\{31B16C04-055C-4681-8ED6-B7EDCDF600CE}\HPOneAgent.exe [1169576 2024-11-19] (HP Inc. -> HP Inc; HP Development Company, L.P.)
Task: {DB5845A0-A548-49BB-8035-A6B0CB2330CF} - System32\Tasks\HPSupportTool => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-iolo-collector_ver_4.675.11370\HPSupportAssistant1.exe (No File)
Task: {42548F85-A3EB-4C13-AF3F-688374237110} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28660944 2024-11-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8F358D4D-84F7-480F-AB6F-D75D60CCB8FE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28660944 2024-11-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD30D45D-DAA5-4BF0-86AC-1E8964F38ECE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311944 2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED766A16-FEE6-4321-A95E-125D214C3E93} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311944 2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1875C96-BC69-494A-A70F-7FE2BBAA2BE3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [186992 2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {B9B2828E-EB6C-4DE6-BA9D-4ECD34C9970F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-11-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {43833194-A1F1-4FB8-A67A-BAB9CF926176} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3530282796-2492871232-3359154168-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-11-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {F0CCA0AA-626E-45D4-AE05-59E53EED1104} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-11-27] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{5d78b6c1-816b-4e77-8125-9f3ad7ca951c}: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-03]
Error reading preferences. Please check "Secure Preferences" file for possible corruption. <==== ATTENTION
Edge Extension: (No Name) - C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aoganjpeihhkhippgnniaclfocnihgln [2024-04-15]
Edge Extension: (No Name) - C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-14]
Edge Extension: (No Name) - C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-11-14]
Edge Extension: (No Name) - C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (No Name) - C:\Users\safro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2024-11-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: dhpnfwib.default
FF ProfilePath: C:\Users\safro\AppData\Roaming\Mozilla\Firefox\Profiles\dhpnfwib.default [2022-09-15]
FF ProfilePath: C:\Users\safro\AppData\Roaming\Mozilla\Firefox\Profiles\wwh84cyh.default-release-1725711429694 [2024-12-03]
FF Homepage: Mozilla\Firefox\Profiles\wwh84cyh.default-release-1725711429694 -> seznam.cz
FF Notifications: Mozilla\Firefox\Profiles\wwh84cyh.default-release-1725711429694 -> hxxps://euqs.shein.com; hxxps://cz.pinterest.com; hxxps://www.lidl.cz; hxxps://www.eva.cz
FF Extension: (HP Wolf Security Extension) - C:\Users\safro\AppData\Roaming\Mozilla\Firefox\Profiles\wwh84cyh.default-release-1725711429694\Extensions\firefoxhpwolfsecurityextension@bromium.com.xpi [2024-09-07] [UpdateUrl:hxxps://addons.bromium-online.com/updates.json]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Legacy] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-12-03]

Chrome:
=======
CHR Profile: C:\Users\safro\AppData\Local\Google\Chrome\User Data\Default [2024-12-03]
CHR Extension: (No Name) - C:\Users\safro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpmlagmcbcnjhkdjiofoenkfbaclgjkk [2024-04-24]
CHR Extension: (No Name) - C:\Users\safro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-09-21]
CHR Extension: (No Name) - C:\Users\safro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-01]
CHR Extension: (No Name) - C:\Users\safro\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-09-11]
CHR HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12952232 2021-03-23] (Acronis International GmbH -> )
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S4 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2021-05-19] (Acronis International GmbH -> )
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-10-02] (Apple Inc. -> Apple Inc.)
S4 BrAmSvc; C:\Program Files\HP\Sure Click\servers\BrAmSvc.exe [2054048 2024-10-28] (HP Inc -> HP)
R2 BrEndpointSvc; C:\Program Files\HP\Sure Click\servers\BemSvc.exe [4689672 2024-10-28] (Bromium UK Limited -> HP)
R2 BrService; C:\Program Files\HP\Sure Click\servers\BrService.exe [10681096 2024-10-28] (Bromium UK Limited -> HP)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\130.0.27176.93\elevation_service.exe [1880640 2024-11-06] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13512912 2024-11-06] (Microsoft Corporation -> Microsoft Corporation)
S2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [86592 2022-11-14] (Synaptics Incorporated -> Conexant Systems LLC.)
S2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [191360 2022-11-14] (Synaptics Incorporated -> Conexant Systems, Inc.)
S2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3963120 2023-09-15] (Wondershare Technology Group Co.,Ltd -> wondershare)
R2 DpHost; C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [530136 2020-04-30] (DigitalPersona, Inc. -> Crossmatch, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5563760 2024-11-01] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-11-01] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-11-01] (ESET, spol. s r.o. -> ESET)
R2 HotKeyServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5a1a129f026a7144\HotKeyServiceDSU.exe [681440 2024-06-27] (HP Inc. -> HP Inc.)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\HotKeyServiceUWP.exe [1526176 2020-08-18] (HP Inc. -> HP Inc.)
R2 hp-one-agent-service; C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2206248 2024-10-29] (HP Inc. -> HP Inc; HP Development Company, L.P.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\AppHelperCap.exe [912520 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\DiagsCap.exe [910984 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\NetworkCap.exe [906864 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-16] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149448 2020-07-23] (HP Inc. -> HP)
R2 HPSIService; C:\windows\system32\HPSIsvc.exe [126856 2012-11-08] (Hewlett-Packard Company -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\SysInfoCap.exe [911472 2024-11-10] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe [568896 2024-05-07] (HP Inc. -> HP Inc.)
S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-07] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S4 LanWlanSwitchingService; C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe [628776 2019-05-28] (HP Inc. -> HP)
R2 LanWlanWwanSwitchingServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5a1a129f026a7144\LanWlanWwanSwitchingServiceDSU.exe [587744 2024-06-27] (HP Inc. -> HP Inc.)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_42257e45eaa17009\LanWlanWwanSwitchingServiceUWP.exe [782744 2020-08-18] (HP Inc. -> HP Inc.)
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2136488 2021-03-23] (Acronis International GmbH -> )
S2 SECOMNService; C:\WINDOWS\System32\DriverStore\FileRepository\seapo64.inf_amd64_deaeb20891c6fa3a\SECOMN64.exe [1087496 2024-07-08] (Microsoft Windows Hardware Compatibility Publisher -> Sonitude, Inc.)
R2 SecurityUpdateService; C:\Program Files\HP\Security Update Service\4.4.20.684\SecurityUpdateService.exe [5059848 2024-10-23] (Bromium UK Limited -> HP)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7398360 2021-03-23] (Acronis International GmbH -> )
S4 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [X]
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
S2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\WirelessBackupService.exe [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [7460408 2024-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
S3 BdDci4; C:\WINDOWS\system32\DRIVERS\bddci4.sys [933424 2024-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 BrCow_4_4_19_1661; C:\WINDOWS\System32\DRIVERS\BrCow_4_4_19_1661.sys [69608 2024-10-28] (Bromium UK Limited -> Windows (R) Win 7 DDK provider)
R2 BrFilter_4_4_19_1661; C:\WINDOWS\System32\DRIVERS\BrFilter_4_4_19_1661.sys [235496 2024-10-28] (Bromium UK Limited -> HP)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2023-04-04] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-04-04] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [220520 2024-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [121864 2024-10-26] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [268568 2024-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57872 2024-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87784 2024-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [128552 2024-10-26] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [720392 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
S1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1490896 2024-09-11] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [9728 2023-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [29168 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [15816 2021-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_0ca603ee5d51e3b2\rt68cx21x64.sys [810328 2024-03-19] (Realtek Semiconductor Corp. -> Realtek)
S3 Ser2pl; C:\WINDOWS\System32\drivers\ser2pl64.sys [258544 2019-08-01] (WDKTestCert charles-yeh,131345514351795974 -> Prolific Technology Inc.)
S0 sselam_4_4_19_828; C:\WINDOWS\System32\DRIVERS\sselam_4_4_19_828.sys [19528 2024-10-28] (Microsoft Windows Early Launch Anti-malware Publisher -> HP)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
R3 uxen; C:\Program Files\HP\Sure Click\bin\uxen.sys [1924552 2024-08-23] (Bromium UK Limited -> HP)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
R4 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [1403448 2024-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2021-05-19] (Acronis International GmbH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [10752 2023-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ax_pvi; \??\C:\Program Files\HP\Sure Click\bin\ax_pvi.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-03 19:24 - 2024-12-03 19:24 - 000039214 _____ C:\Users\safro\Desktop\FRST.txt
2024-12-03 19:24 - 2024-12-03 19:24 - 000000000 ____D C:\Users\safro\Desktop\FRST-OlderVersion
2024-12-03 19:19 - 2024-12-03 19:19 - 000725758 _____ C:\WINDOWS\system32\perfh005.dat
2024-12-03 19:19 - 2024-12-03 19:19 - 000151026 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-03 08:45 - 2024-12-03 08:45 - 039433013 _____ C:\Users\safro\Downloads\desková hra KDO BUDE PRVNÍ U STROMEČKU-1.pdf
2024-12-03 08:33 - 2024-12-03 08:33 - 000010352 __RSH C:\ProgramData\ntuser.pol
2024-12-03 08:20 - 2024-12-03 08:20 - 002952358 _____ C:\Users\safro\Downloads\behacka-zima.zip
2024-12-02 21:52 - 2024-12-02 21:52 - 039432415 _____ C:\Users\safro\Downloads\desková hra KDO BUDE PRVNÍ U STROMEČKU.pdf
2024-12-02 21:51 - 2024-12-02 21:51 - 039432431 _____ C:\Users\safro\Downloads\Kopie návrhu DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ-3.pdf
2024-12-02 20:22 - 2024-12-02 20:22 - 018511906 _____ C:\Users\safro\Downloads\Kopie návrhu DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ-2.pdf
2024-12-02 20:18 - 2024-12-02 20:18 - 012382850 _____ C:\Users\safro\Downloads\Kopie návrhu DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ-1.pdf
2024-12-02 20:11 - 2024-12-02 20:11 - 012274881 _____ C:\Users\safro\Downloads\Kopie návrhu DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ.pdf
2024-12-02 08:07 - 2024-12-02 08:07 - 015217713 _____ C:\Users\safro\Downloads\zimni-koop-omalovanka.zip
2024-12-01 18:01 - 2024-12-01 18:01 - 008524902 _____ C:\Users\safro\Downloads\Balíček-materiálů-Učitelnice.zip
2024-12-01 17:43 - 2024-12-01 17:43 - 021270471 _____ C:\Users\safro\Downloads\DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ-final.pdf
2024-12-01 17:05 - 2024-12-01 17:05 - 000000000 ____D C:\Users\safro\AppData\Local\SoundResearch
2024-12-01 11:15 - 2024-12-01 11:15 - 000052706 _____ C:\Users\safro\Downloads\Vypis_z_uctu-2202564380_20241101-20241130_cislo-11.pdf
2024-12-01 11:15 - 2024-12-01 11:15 - 000051489 _____ C:\Users\safro\Downloads\Vypis_z_uctu-2202583215_20241101-20241130_cislo-11.pdf
2024-12-01 08:59 - 2024-12-01 08:59 - 000013548 _____ C:\Users\safro\Downloads\3451_11_2024.xlsx
2024-11-30 19:51 - 2024-11-30 19:51 - 021270472 _____ C:\Users\safro\Downloads\DESKOVÁ STOLNÍ HRA TŘI KRÁLOVÉ.pdf
2024-11-30 19:48 - 2024-11-30 19:48 - 021270103 _____ C:\Users\safro\Downloads\1-4.pdf
2024-11-30 18:55 - 2024-11-30 18:55 - 018047089 _____ C:\Users\safro\Downloads\1-3.pdf
2024-11-30 18:19 - 2024-11-30 18:19 - 007919843 _____ C:\Users\safro\Downloads\1-2.pdf
2024-11-30 15:26 - 2024-11-30 15:26 - 007750547 _____ C:\Users\safro\Downloads\1-1.pdf
2024-11-30 14:20 - 2024-11-30 14:20 - 020090310 _____ C:\Users\safro\Downloads\Návrh bez názvu-17.pdf
2024-11-30 12:06 - 2024-11-30 12:06 - 006951483 _____ C:\Users\safro\Downloads\Návrh bez názvu-16.pdf
2024-11-30 11:52 - 2024-11-30 11:52 - 005629257 _____ C:\Users\safro\Downloads\Návrh bez názvu-15.pdf
2024-11-30 11:47 - 2024-11-30 11:47 - 005625540 _____ C:\Users\safro\Downloads\Návrh bez názvu-14.pdf
2024-11-30 11:44 - 2024-11-30 11:44 - 005625323 _____ C:\Users\safro\Downloads\Návrh bez názvu-13.pdf
2024-11-30 11:38 - 2024-11-30 11:38 - 005625134 _____ C:\Users\safro\Downloads\Návrh bez názvu-12.pdf
2024-11-29 19:23 - 2024-11-29 19:23 - 069996263 _____ C:\Users\safro\Downloads\stolní hra - zdobení stromečku.pdf
2024-11-28 21:57 - 2024-11-28 21:57 - 015878526 _____ C:\Users\safro\Desktop\jak-na-site.pdf
2024-11-26 16:00 - 2024-11-26 16:00 - 000085504 _____ C:\Users\safro\Downloads\seznam_registrovan__ch_autor___k__31.3.2024.xls
2024-11-26 15:37 - 2024-11-26 15:37 - 001331534 _____ C:\Users\safro\Downloads\cc0_srpen_2023.pdf
2024-11-26 14:27 - 2024-11-26 14:27 - 007836071 _____ C:\Users\safro\Downloads\Omalovankova-sada-Mikulas-andel-cert.zip
2024-11-25 18:54 - 2024-11-25 18:54 - 000489790 _____ C:\Users\safro\Downloads\OznProCleny_2024_10_70340762-1.pdf
2024-11-25 14:45 - 2024-11-25 14:45 - 072928747 _____ C:\Users\safro\Downloads\O-KOHOUTKOVI-A-SLEPICCE.zip
2024-11-24 17:05 - 2024-11-24 17:05 - 001521512 _____ C:\Users\safro\Downloads\Přidat nadpis-1.pdf
2024-11-24 14:52 - 2024-11-24 14:52 - 000057871 _____ C:\Users\safro\Downloads\Přidat nadpis.pdf
2024-11-24 14:36 - 2024-11-24 14:36 - 010810703 _____ C:\Users\safro\Downloads\školní rok-4.pdf
2024-11-24 10:18 - 2024-11-24 10:18 - 006270901 _____ C:\Users\safro\Downloads\adventní kalendář kapr.pdf
2024-11-24 10:14 - 2024-11-24 10:14 - 015275336 _____ C:\Users\safro\Downloads\ryba adventní kalendář 1.zip
2024-11-23 20:27 - 2024-11-23 20:27 - 008348210 _____ C:\Users\safro\Downloads\školní rok-3.pdf
2024-11-23 20:13 - 2024-11-23 20:13 - 008339516 _____ C:\Users\safro\Downloads\školní rok-2.pdf
2024-11-23 20:10 - 2024-11-23 20:10 - 008339467 _____ C:\Users\safro\Downloads\školní rok-1.pdf
2024-11-23 20:04 - 2024-11-23 20:04 - 008338547 _____ C:\Users\safro\Downloads\školní rok.pdf
2024-11-23 17:01 - 2024-11-23 17:01 - 008902971 _____ C:\Users\safro\Downloads\ADVENTNÍ ÚKOLNÍČEK-01.pdf
2024-11-23 16:56 - 2024-11-23 16:56 - 008939745 _____ C:\Users\safro\Downloads\ADVENTNÍ ÚKOLNÍČEK-2.pdf
2024-11-23 16:44 - 2024-11-23 16:44 - 007188476 _____ C:\Users\safro\Downloads\ADVENTNÍ ÚKOLNÍČEK-1.pdf
2024-11-23 16:27 - 2024-11-23 16:27 - 007376991 _____ C:\Users\safro\Downloads\ADVENT-2024.pdf
2024-11-23 15:13 - 2024-11-23 15:13 - 007189076 _____ C:\Users\safro\Downloads\ADVENT-3.pdf
2024-11-23 14:12 - 2024-11-23 14:12 - 009369109 _____ C:\Users\safro\Downloads\ADVENT-2.pdf
2024-11-23 14:11 - 2024-11-23 14:11 - 009435487 _____ C:\Users\safro\Downloads\ADVENT-1.pdf
2024-11-22 15:42 - 2024-11-22 15:42 - 056468239 _____ C:\Users\safro\Downloads\vanocnibalicek-set6.zip
2024-11-22 07:53 - 2024-11-22 07:53 - 000001298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Sure Click Secure Browser.lnk
2024-11-21 21:25 - 2024-11-21 21:25 - 006577748 _____ C:\Users\safro\Downloads\ZIMNÍ OBRÁZKOVÝ ÚKOLNÍČEK-1-1.pdf
2024-11-20 18:40 - 2024-11-20 18:40 - 000398550 _____ C:\Users\safro\Downloads\Opatreni_obecne_povahy_-_pajasan_zlaznaty-1.pdf
2024-11-20 18:38 - 2024-11-20 18:38 - 000398550 _____ C:\Users\safro\Downloads\Opatreni_obecne_povahy_-_pajasan_zlaznaty.pdf
2024-11-20 16:44 - 2024-11-20 16:45 - 034522144 _____ C:\Users\safro\Downloads\atlas-hub.zip
2024-11-19 16:31 - 2024-11-19 16:31 - 000003608 _____ C:\WINDOWS\system32\Tasks\HPDataRetriever
2024-11-19 16:30 - 2024-11-19 16:30 - 000003554 _____ C:\WINDOWS\system32\Tasks\HPSupportTool
2024-11-19 08:57 - 2024-11-19 16:28 - 000000980 _____ C:\WINDOWS\system32\x509Req.pem
2024-11-19 08:56 - 2024-11-19 08:56 - 000003914 _____ C:\WINDOWS\system32\Tasks\HPOneAgentRepairTask
2024-11-19 08:48 - 2024-11-19 08:48 - 000566667 _____ C:\Users\safro\Downloads\VUP_Metodika_hodnoceni_PV-2007-07-18-individualizace-vzdělávání.pdf
2024-11-19 08:15 - 2024-11-19 08:15 - 057815728 _____ C:\Users\safro\Downloads\ZIMNÍ OBRÁZKOVÝ ÚKOLNÍČEK-1.pdf
2024-11-18 21:35 - 2024-11-18 21:35 - 013053604 _____ C:\Users\safro\Downloads\vanocni-aktivity2.zip
2024-11-18 20:11 - 2024-11-18 20:11 - 039178152 _____ C:\Users\safro\Downloads\Omaľovánky pre najmenších .pdf
2024-11-18 19:43 - 2024-11-18 19:43 - 020012712 _____ C:\Users\safro\Downloads\Omaľovánky - ZOO - AFRIKA (sk)-1.pdf
2024-11-18 19:37 - 2024-11-18 19:37 - 008000479 _____ C:\Users\safro\Downloads\DETSKE PENIAZE (SK).pdf
2024-11-18 08:44 - 2024-11-18 08:45 - 057815290 _____ C:\Users\safro\Downloads\ZIMNÍ OBRÁZKOVÝ ÚKOLNÍČEK.pdf
2024-11-17 20:59 - 2024-11-17 20:59 - 020005242 _____ C:\Users\safro\Downloads\Omaľovánky - ZOO - AFRIKA (sk).pdf
2024-11-17 19:46 - 2024-11-17 19:46 - 007996031 _____ C:\Users\safro\Downloads\DETSKÉ PENIAZE (SK).pdf
2024-11-17 18:36 - 2024-11-17 18:37 - 045950703 _____ C:\Users\safro\Downloads\advent.zip
2024-11-17 18:33 - 2024-11-17 18:33 - 003345171 _____ C:\Users\safro\Downloads\MEGA ADVENTNÍ KALENDÁŘ OMALOVÁNKOVÝ.zip
2024-11-17 18:32 - 2024-11-17 18:32 - 052051265 _____ C:\Users\safro\Downloads\MEGA ADVENTNÍ KALENDÁŘ ÚKOLOVÝ.zip
2024-11-17 17:57 - 2024-11-17 17:57 - 007986499 _____ C:\Users\safro\Downloads\DĚTSKÉ PENÍZE-OK.pdf
2024-11-17 16:37 - 2024-11-17 16:37 - 005421414 _____ C:\Users\safro\Downloads\100.pdf
2024-11-17 08:52 - 2024-11-17 08:52 - 000172190 _____ C:\Users\safro\Downloads\Vypis z bezneho uctu.pdf
2024-11-16 17:22 - 2024-11-16 17:23 - 011945612 _____ C:\Users\safro\Downloads\lapbook co vím o svém těle (ok).pdf
2024-11-16 14:23 - 2024-11-16 17:04 - 015253093 _____ C:\Users\safro\Downloads\lapbook vánoční tradice-ok.pdf
2024-11-16 14:12 - 2024-11-16 14:12 - 013856115 _____ C:\Users\safro\Downloads\lapbook vánoční tradice-1.pdf
2024-11-16 14:10 - 2024-11-16 14:10 - 013856115 _____ C:\Users\safro\Downloads\lapbook vánoční tradice.pdf
2024-11-15 14:58 - 2024-11-15 14:58 - 000020675 _____ C:\Users\safro\Downloads\objednávka hračky Lidl(1).odt
2024-11-15 14:53 - 2024-11-15 14:53 - 000020675 _____ C:\Users\safro\Downloads\objednávka hračky Lidl.odt
2024-11-14 08:56 - 2024-11-14 08:57 - 014179689 _____ C:\Users\safro\Downloads\lapbook svatý martin ok-1.pdf
2024-11-14 08:56 - 2024-11-14 08:56 - 012996362 _____ C:\Users\safro\Downloads\lapbook-svaty-martin-1-1.pdf
2024-11-14 08:50 - 2024-11-14 08:50 - 014179689 _____ C:\Users\safro\Downloads\lapbook svatý martin ok.pdf
2024-11-13 21:40 - 2024-11-13 21:40 - 000000000 _____ C:\Users\safro\Downloads\LXXuEmba.htm
2024-11-13 19:54 - 2024-11-13 19:56 - 016763169 _____ C:\Users\safro\Downloads\JÁ dělám, KDO dělá... DENNÍ ČINNOSTI-1.pdf
2024-11-13 15:26 - 2024-11-13 15:26 - 000026650 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-11-13 15:25 - 2024-11-13 15:25 - 000026650 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-11-12 19:39 - 2024-11-12 19:39 - 000040295 _____ C:\Users\safro\Downloads\Konzultační schůzka zš a mš.odt
2024-11-12 15:01 - 2024-11-12 15:01 - 012027088 _____ C:\Users\safro\Downloads\lapbook pro Mikuláše-ok2.pdf
2024-11-11 19:07 - 2024-11-11 19:07 - 012996362 _____ C:\Users\safro\Downloads\lapbook-svaty-martin-1.pdf
2024-11-11 17:23 - 2024-11-11 17:23 - 012027088 _____ C:\Users\safro\Downloads\lapbook pro Mikuláše-(ok).pdf
2024-11-11 17:03 - 2024-11-11 17:03 - 012027307 _____ C:\Users\safro\Downloads\lapbook pro Mikuláše-1.pdf
2024-11-11 17:01 - 2024-11-11 17:01 - 012027307 _____ C:\Users\safro\Downloads\lapbook pro Mikuláše.pdf
2024-11-11 15:42 - 2024-11-11 15:42 - 005598365 _____ C:\Users\safro\Downloads\behacka-podzim.zip
2024-11-11 15:40 - 2024-11-11 15:40 - 001407897 _____ C:\Users\safro\Downloads\podzimni-omalovanky-s-pracovnimi-listy.zip
2024-11-10 20:36 - 2024-11-10 20:36 - 003429996 _____ C:\Users\safro\Downloads\lapbook pro Mikuláše.zip
2024-11-10 15:11 - 2024-11-10 15:11 - 012996362 _____ C:\Users\safro\Downloads\lapbook svatý martin-1.pdf
2024-11-10 09:17 - 2024-11-10 09:17 - 008454440 _____ C:\Users\safro\Downloads\Inspirace( nejen) do školky - zimní nabídka.mp4
2024-11-10 09:14 - 2024-11-10 09:14 - 008456584 _____ C:\Users\safro\Downloads\video návrh(1).mp4
2024-11-09 20:06 - 2024-11-09 20:06 - 008103477 _____ C:\Users\safro\Downloads\video návrh.mp4
2024-11-09 18:01 - 2024-11-09 18:01 - 000034188 _____ C:\Users\safro\Downloads\IMG_6244.jpeg
2024-11-09 17:40 - 2024-11-09 17:40 - 000036806 _____ C:\Users\safro\Downloads\IMG_6026.jpeg
2024-11-09 15:15 - 2024-11-09 16:40 - 014320899 _____ C:\Users\safro\Downloads\pracovní listy svatý Martin-ok.pdf
2024-11-08 21:34 - 2024-11-08 21:34 - 000489790 _____ C:\Users\safro\Downloads\OznProCleny_2024_10_70340762.pdf
2024-11-08 21:00 - 2024-11-08 21:00 - 004323756 _____ C:\Users\safro\Downloads\Casopis_LISTOPAD_2024_web.pdf
2024-11-08 20:59 - 2024-11-08 20:59 - 003197180 _____ C:\Users\safro\Downloads\Kuryr_RIJEN_2024.pdf
2024-11-08 20:58 - 2024-11-08 20:58 - 015688581 _____ C:\Users\safro\Downloads\Katalog_FC_2024-2025.pdf
2024-11-08 20:53 - 2024-11-08 20:53 - 006007872 _____ C:\Users\safro\Downloads\Katalog_na_web_fin_Beauty.pdf
2024-11-08 20:51 - 2024-11-08 20:51 - 012491840 _____ C:\Users\safro\Downloads\Katalog_KOSMETIKA_A_CISTICI_PROSTREDKY_2024-2025_CZ.pdf
2024-11-08 20:21 - 2024-11-08 20:21 - 010395470 _____ C:\Users\safro\Downloads\Třída ................-2.pdf
2024-11-08 13:24 - 2024-11-08 13:24 - 001979779 _____ C:\Users\safro\Downloads\Konik-svaty-martin.pdf
2024-11-07 19:45 - 2024-10-28 13:42 - 000235496 _____ (HP) C:\WINDOWS\system32\Drivers\BrFilter_4_4_19_1661.sys
2024-11-07 19:45 - 2024-10-28 13:42 - 000069608 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\BrCow_4_4_19_1661.sys
2024-11-07 18:41 - 2024-11-07 18:41 - 039380686 _____ C:\Users\safro\Downloads\omalovánky pro nejmenší-1.pdf
2024-11-07 16:45 - 2024-11-07 16:45 - 039380674 _____ C:\Users\safro\Downloads\omalovánky pro nejmenší.pdf
2024-11-06 16:51 - 2024-11-06 16:51 - 045402027 _____ C:\Users\safro\Downloads\hledej rozdíly pro nejmenší-1.pdf
2024-11-06 16:46 - 2024-11-06 16:46 - 043341582 _____ C:\Users\safro\Downloads\hledej rozdíly pro nejmenší.pdf
2024-11-05 16:34 - 2024-11-05 16:34 - 022479790 _____ C:\Users\safro\Downloads\pracovni-sesit-podzimni-listy2.zip
2024-11-04 18:33 - 2024-11-04 18:33 - 018813236 _____ C:\Users\safro\Downloads\o lakomém čertovi-3.pdf
2024-11-04 17:12 - 2024-11-04 17:12 - 022479772 _____ C:\Users\safro\Downloads\pracovni-sesit-podzimni-listy.zip
2024-11-03 20:16 - 2024-11-03 20:16 - 001195453 _____ C:\Users\safro\Downloads\Týdenní blok - NENÍ DRAK jako DRAK.pdf
2024-11-03 20:14 - 2024-11-03 20:14 - 031117319 _____ C:\Users\safro\Downloads\O líném drakovi(1ok).pdf
2024-11-03 18:14 - 2024-11-03 18:14 - 002560202 _____ C:\Users\safro\Downloads\foto-rekvizity.zip
2024-11-03 18:13 - 2024-11-03 18:13 - 002630081 _____ C:\Users\safro\Downloads\listova-postrehovka.zip
2024-11-03 15:16 - 2024-11-03 15:17 - 024170508 _____ C:\Users\safro\Downloads\Podzimni-aktivity-komprimovany.pdf
2024-11-03 15:06 - 2024-11-03 15:06 - 000000000 _____ C:\Users\safro\Downloads\nGEHLDfa.htm
2024-11-03 15:05 - 2024-11-03 15:05 - 000000000 _____ C:\Users\safro\Downloads\nWzMgyXJ.htm
2024-11-03 14:53 - 2024-11-03 14:53 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-11-03 10:57 - 2024-11-03 10:57 - 018813255 _____ C:\Users\safro\Downloads\o lakomém čertovi-2.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-03 19:25 - 2022-02-08 19:32 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-03 19:24 - 2024-09-10 19:45 - 002402816 _____ (Farbar) C:\Users\safro\Desktop\FRST64.exe
2024-12-03 19:24 - 2022-09-14 18:09 - 000000000 ____D C:\FRST
2024-12-03 19:19 - 2023-04-04 16:36 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-03 19:19 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-12-03 19:18 - 2023-04-04 17:16 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2024-12-03 19:18 - 2020-07-21 22:30 - 000000000 ____D C:\Program Files\CCleaner
2024-12-03 19:17 - 2020-03-13 06:19 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2024-12-03 19:17 - 2019-04-19 19:34 - 000000000 ____D C:\ProgramData\HP
2024-12-03 19:14 - 2023-04-04 16:27 - 000000000 ____D C:\Users\safro
2024-12-03 19:14 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-03 19:14 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-03 19:14 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-03 19:14 - 2020-06-13 14:36 - 000000000 __SHD C:\Users\safro\IntelGraphicsProfiles
2024-12-03 19:14 - 2020-06-13 14:36 - 000000000 ____D C:\Users\safro\AppData\Local\Packages
2024-12-03 19:14 - 2019-04-19 19:32 - 000000000 ____D C:\ProgramData\Packages
2024-12-03 19:13 - 2023-04-04 16:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-03 19:13 - 2023-04-04 16:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-03 19:13 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-03 19:13 - 2020-09-15 18:42 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-03 19:13 - 2020-03-13 06:10 - 000000000 ___HD C:\Intel
2024-12-03 08:25 - 2023-04-04 16:32 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-12-02 20:56 - 2020-03-13 06:14 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-01 17:04 - 2023-11-23 16:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-01 17:04 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-01 17:04 - 2020-06-13 14:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-01 14:37 - 2020-06-13 14:48 - 000000000 ____D C:\Users\safro\AppData\Roaming\Microsoft\Word
2024-12-01 09:09 - 2020-06-13 14:39 - 000000000 ____D C:\Users\safro\AppData\Roaming\Microsoft\Excel
2024-11-29 09:15 - 2020-06-18 06:33 - 000000000 ____D C:\Users\safro\AppData\Local\D3DSCache
2024-11-28 14:21 - 2020-07-16 18:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-28 14:21 - 2020-07-16 18:49 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-28 14:21 - 2020-06-13 14:37 - 000000000 ____D C:\Users\safro\AppData\Roaming\hpqLog
2024-11-27 13:49 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-11-27 13:49 - 2020-03-13 06:20 - 000000000 ____D C:\Program Files\Microsoft Office
2024-11-27 12:48 - 2023-04-04 16:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-11-27 12:48 - 2020-06-13 14:45 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-11-25 14:03 - 2023-04-04 16:32 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-25 14:03 - 2023-04-04 16:32 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-23 13:22 - 2023-04-04 16:32 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3530282796-2492871232-3359154168-1001
2024-11-23 13:22 - 2023-04-04 16:32 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3530282796-2492871232-3359154168-1001
2024-11-23 13:22 - 2020-09-15 17:57 - 000002389 _____ C:\Users\safro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-22 08:24 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-11-19 08:56 - 2020-03-13 06:14 - 000000000 ____D C:\Program Files\HP
2024-11-13 18:43 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-11-13 17:09 - 2023-04-04 16:26 - 000590312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-13 17:07 - 2023-10-11 20:45 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-11-13 17:07 - 2022-05-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-13 17:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-13 17:07 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2024-11-13 16:08 - 2024-04-17 13:32 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-11-13 16:08 - 2024-04-17 13:32 - 000002069 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-11-13 16:07 - 2020-06-20 07:46 - 000002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-13 16:07 - 2020-06-20 07:46 - 000002268 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-11-13 16:06 - 2024-07-05 10:06 - 000001391 _____ C:\Users\Public\Desktop\Skype.lnk
2024-11-13 16:06 - 2024-07-05 10:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-11-13 16:04 - 2023-11-05 08:13 - 000000873 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2024-11-13 16:04 - 2023-11-05 08:13 - 000000861 _____ C:\Users\Public\Desktop\Audacity.lnk
2024-11-13 16:04 - 2023-11-05 08:13 - 000000000 ____D C:\Program Files\Audacity
2024-11-13 16:04 - 2023-10-11 15:17 - 000000000 ____D C:\WINDOWS\Minidump
2024-11-13 15:42 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-13 15:30 - 2022-05-07 06:25 - 000077312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2024-11-13 15:30 - 2022-05-07 06:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2024-11-13 15:17 - 2020-06-13 15:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-13 15:14 - 2020-06-13 15:25 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-13 14:54 - 2022-09-21 07:06 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-11-13 14:52 - 2023-04-04 16:32 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-11-13 14:51 - 2023-04-04 16:32 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-11-12 19:34 - 2020-07-21 22:31 - 000002395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2024-11-12 19:34 - 2020-07-21 22:30 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2024-11-11 15:01 - 2020-03-13 06:22 - 000000000 ____D C:\ProgramData\Bromium
2024-11-09 20:16 - 2023-04-16 14:13 - 000000000 ____D C:\Users\safro\Desktop\koláže na web
2024-11-07 19:45 - 2020-03-13 06:23 - 000034871 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================




Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by safro (03-12-2024 19:28:32)
Running from C:\Users\safro\Desktop
Microsoft Windows 11 Pro Version 23H2 22631.4460 (X64) (2023-04-04 15:32:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3530282796-2492871232-3359154168-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3530282796-2492871232-3359154168-503 - Limited - Disabled)
Guest (S-1-5-21-3530282796-2492871232-3359154168-501 - Limited - Disabled)
safro (S-1-5-21-3530282796-2492871232-3359154168-1001 - Administrator - Enabled) => C:\Users\safro
WDAGUtilityAccount (S-1-5-21-3530282796-2492871232-3359154168-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acronis Drivers (HKLM\...\{7C36ADC0-5219-4D31-90D1-4211321481EF}) (Version: 25.8.39216 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{F0A1A9E1-CD4B-4504-836F-1946F5815ECB}) (Version: 25.8.39216 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{F0A1A9E1-CD4B-4504-836F-1946F5815ECB}Visible) (Version: 25.8.39216 - Acronis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20243 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ApowerCompress V1.1.18 (HKLM-x32\...\{10998dc6-e8e2-48ef-9378-0db3d4c7f32a}_is1) (Version: 1.1.18 - Wangxu Technology Co.,Ltd.)
Apple Mobile Device Support (HKLM\...\{AAFEC555-4154-4A21-9523-30B8CDE94533}) (Version: 18.0.0.33 - Apple Inc.)
Audacity 3.7.0 (HKLM\...\Audacity_is1) (Version: 3.7.0 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.30 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 130.0.27176.93 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
CEWE fotosvet (HKLM\...\CEWE fotosvet) (Version: 7.3.3 - CEWE Stiftung u Co. KGaA)
CPUID HWMonitor 1.54 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.54 - CPUID, Inc.)
CrystalDiskInfo 8.17.5 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.5 - Crystal Dew World)
Dynamic Application Loader Host Interface Service (HKLM\...\{9DE7A0A5-C13D-4FDD-B78B-53C744C82F1A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ESET Security (HKLM\...\{32DA3D18-091D-4B85-BFD4-C17C514674ED}) (Version: 18.0.12.0 - ESET, spol. s r.o.)
Express Burn Disc Burning Software (HKLM-x32\...\ExpressBurn) (Version: 10.30 - NCH Software)
Express Zip File Compression (HKLM-x32\...\ExpressZip) (Version: 9.26 - NCH Software)
FastStone Photo Resizer 4.4 (HKLM-x32\...\FastStone Photo Resizer) (Version: 4.4 - FastStone Corporation)
Google Chrome (HKLM\...\{FB5A6B22-71AB-36B9-AC32-02EAC075DEC3}) (Version: 131.0.6778.70 - Google LLC)
HappyFoto (HKLM\...\{621A70CA-32A5-4F50-A66C-C9C792580415}_is1) (Version: - Happy Foto CZ)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.320 - Huawei Technologies Co., Ltd.)
HP Client Security Manager (HKLM\...\{456CC699-FD29-4835-9CE6-BB3E63DC76E3}) (Version: 9.5.3.2908 - HP Inc.) Hidden
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 9.5.3.2908 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Hotkey Support (HKLM-x32\...\{6606696F-B31A-48B7-B05D-FB5DDFAD9FAB}) (Version: 6.2.52.1 - HP Inc.)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
HP Notifications (HKLM-x32\...\{84937F28-9CB4-49E7-A2CF-E32D97E6DAE6}) (Version: 1.1.28.1 - HP)
HP One Agent (HKLM\...\{31B16C04-055C-4681-8ED6-B7EDCDF600CE}) (Version: 1.1.683.2629 - HP Inc.)
HP One Agent (HKLM\...\{4C65BC47-61F3-4CED-805D-F7D117452DE1}) (Version: 1.1.683.2629 - HP Inc.) Hidden
HP Security Update Service (HKLM\...\{3EDE086C-A440-4DDA-AFF7-1EF8EB463A2F}) (Version: 4.4.20.684 - HP Inc.)
HP System Default Settings (HKLM-x32\...\{0543AB37-B3F9-4948-A6D7-AB574271DEAC}) (Version: 1.4.9.2 - HP Inc.) Hidden
HP Wolf Security - Console (HKLM\...\{09BCA5F5-E817-4598-9830-24D8DE49375F}) (Version: 11.1.3.779 - HP Inc.)
HP Wolf Security (HKLM\...\{B3DD68CF-957C-11EF-BF36-000C29910851}) (Version: 4.4.19.1661 - HP Inc.)
HP Wolf Security Application Support for Sure Sense (HKLM\...\{5C64A816-A268-4908-9E53-D45D2074FDD5}) (Version: 4.4.19.1414 - HP Inc.) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel(R) Chipset Device Software (HKLM\...\{00C43022-CFDA-4942-9D3F-04199C91C939}) (Version: 10.1.18121.8164 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{37942a92-9e3f-4d70-9b5c-5955cbc54505}) (Version: 10.1.18121.8164 - Intel(R) Corporation)
Intel(R) Icls (HKLM\...\{AE33809B-734E-4A79-BBDC-0DDE03950065}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{4479B4B8-D77B-474A-ABC5-1E5A4356F7DE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1A9FE6B4-801A-4AF0-AEDB-EA49BD80C9F2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2205.15.0.2623 - Intel Corporation)
Intel(R) Management Engine Driver (HKLM\...\{F0A3D842-E346-45C5-9546-90FEFD477F6E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7261 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft .NET Host - 7.0.20 (x64) (HKLM\...\{EE5EB03B-D65C-4991-848E-2C6E024326DB}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 7.0.20 (x64) (HKLM\...\{B0FC828F-678C-4868-9B5B-99639758E6F3}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 7.0.20 (x64) (HKLM\...\{221BB52A-B763-4C9D-AA62-4B0B6C9AAD62}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.18227.20046 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.18227.20046 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.18227.20046 - Microsoft Corporation)
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.18227.20046 - Microsoft Corporation)
Microsoft ASP.NET Core 7.0.20 - Shared Framework (x64) (HKLM-x32\...\{6c2f4b5b-86d2-4aff-bf79-d1e73cc20ab3}) (Version: 7.0.20.24269 - Microsoft Corporation)
Microsoft ASP.NET Core 7.0.20 Shared Framework (x64) (HKLM\...\{BD401329-F877-391C-9E5A-FEB423C5A196}) (Version: 7.0.20.24269 - Microsoft Corporation) Hidden
Microsoft Bing Service (HKLM-x32\...\{27990F25-A90A-4CE5-868E-1A1BB70A58EE}) (Version: 2.0.0.7 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\OneDriveSetup.exe) (Version: 24.221.1103.0003 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\Teams) (Version: 1.7.00.27855 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BACA8ED0-DB44-468A-9D76-7D4588B90D60}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{3FED85F2-4004-4F8A-B65B-DDC1F6013FAA}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34433 (HKLM-x32\...\{804e7d66-ccc2-4c12-84ba-476da31d103d}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34433 (HKLM-x32\...\{e7802eac-3305-4da0-9378-e55d1ed05518}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34433 (HKLM\...\{E1902FC6-C423-4719-AB8A-AC7B2694B367}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34433 (HKLM\...\{382F1166-A409-4C5B-9B1E-85ED538B8291}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34433 (HKLM-x32\...\{84E3E712-6343-484B-8B6C-9F145F019A70}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34433 (HKLM-x32\...\{C2BB95AA-90F3-4891-81C1-A7E565BB836C}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.20 (x64) (HKLM\...\{72C29BED-666F-4E5E-BC49-DF44C890742E}) (Version: 56.80.15245 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.20 (x64) (HKLM-x32\...\{362ea044-f96f-45c7-b59f-0dbe5ca98ff4}) (Version: 7.0.20.33720 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0 (x64 cs)) (Version: 133.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 132.0.2 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18227.20046 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Pentablet (HKLM\...\{5DAB8C1A-6D8E-467D-BE62-AC13087AA950}_is1) (Version: 3.4.3.230310 - XPPen Technology)
PosteRazor (HKLM-x32\...\PosteRazor_is1) (Version: 1.5.2 - Alessandro Portale)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Skype 8.132 (HKLM-x32\...\{12F9F2B6-A694-41D4-BD56-E2F293BEA25C}) (Version: 8.132.0.201 - Skype Technologies S.A.)
Skype verze 8.132 (HKLM-x32\...\Skype_is1) (Version: 8.132 - Skype Technologies S.A.) Hidden
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.9267 - Microsoft Corporation)
Windows Driver Package - HP Inc. BrCow_4_4_19_1661 ActivityMonitor (10/28/2024 4.4.19.1661) (HKLM\...\65B8B2F84A7607E19C54478DA205805D140C02FF) (Version: 10/28/2024 4.4.19.1661 - HP Inc.) Hidden
Windows Driver Package - HP Inc. BrFilter_4_4_19_1661 ActivityMonitor (10/28/2024 4.4.19.1661) (HKLM\...\1507B084DA93A7B97AE9CE48B38FB2413BE1845B) (Version: 10/28/2024 4.4.19.1661 - HP Inc.) Hidden
Windows Driver Package - HP Inc. sselam_4_4_19_828 AntiVirus (08/09/2024 4.4.19.828) (HKLM\...\FB93285F183DE6985F684AEE5F637905935D05BF) (Version: 08/09/2024 4.4.19.828 - HP Inc.) Hidden

Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Audio Controls -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.AudioControls_1.3.99.0_x64__qt57b6kdvhcfw [2022-01-03] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_9.6.1.0_x64__kgqvnymyfvs32 [2024-11-19] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_4.6.1.0_x64__kgqvnymyfvs32 [2024-11-14] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-07-13] (Microsoft Corporation)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2024-12-02] (Sparse Package)
HP Desktop Support Utilities -> C:\Program Files\WindowsApps\AD2F1837.HPDesktopSupportUtilities_7.0.8.0_x64__v10z8vjag6ke6 [2024-11-26] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2024-04-18] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.6.3.0_x64__v10z8vjag6ke6 [2024-09-21] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2024-01-25] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 [2024-10-16] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.40.48.0_x64__v10z8vjag6ke6 [2024-11-22] (HP Inc.)
HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_8.10.39.0_x64__v10z8vjag6ke6 [2023-05-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-06-13] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-10-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-10-30] (Microsoft Corporation) [MS Ad]
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0 [2024-11-21] (Spotify AB) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.311.2039.0_x64__8wekyb3d8bbwe [2024-11-13] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.318.2304.0_x64__8wekyb3d8bbwe [2024-11-19] (Microsoft Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\safro\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.28402\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{82A6D7A6-FC2E-4DFD-AAEF-E3BBF9AD71AD}\localserver32 -> C:\Program Files\Fotolab\CEWE fotosvet\AutoBookService.exe () [File not signed]
CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\safro\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll => No File
CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\safro\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ BromiumOverlay_4_4_19_1661] -> {6CDCC3E8-D8FF-46EF-B8BE-63A059357D5C} => C:\Program Files\HP\Sure Click\4.4.19.1661\servers\HostShellExtension.dll [2024-10-28] (Bromium UK Limited -> HP)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers-x32: [ BromiumOverlay_4_4_19_1661] -> {6CDCC3E8-D8FF-46EF-B8BE-63A059357D5C} => C:\Program Files\HP\Sure Click\4.4.19.1661\servers\HostShellExtension.dll [2024-10-28] (Bromium UK Limited -> HP)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2022-06-22] () [File not signed]
ContextMenuHandlers2: [Bromium TrustDrive Context Menu_4_4_19_1661] -> {5F4F5529-DD35-4B9F-812F-A5B0B3F65780} => C:\Program Files\HP\Sure Click\4.4.19.1661\servers\HostShellExtension.dll [2024-10-28] (Bromium UK Limited -> HP)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [SureSense_ScanFile_4_4_19_1414] -> {1003406D-B16C-4A93-B2F0-13CCAADB500B} => C:\Program Files\HP\Sure Click\ApplicationSupport\sure_sense\4.4.19.1414\SureSenseShellExt.dll [2024-09-11] (Bromium UK Limited -> HP)
ContextMenuHandlers3: [vSentry_TrustFile_4_4_19_1661] -> {833378FE-1986-46BA-9B4E-F8F1D9BB9E12} => C:\Program Files\HP\Sure Click\4.4.19.1661\servers\HostShellExtension.dll [2024-10-28] (Bromium UK Limited -> HP)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2022-06-22] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-06-22 18:41 - 2022-06-22 18:41 - 000105984 _____ () [File not signed] C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll
2020-04-30 12:40 - 2020-04-30 12:40 - 000382464 _____ (Crossmatch, Inc.) [File not signed] C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPCPFelica.dll
2020-04-30 12:40 - 2020-04-30 12:40 - 000338432 _____ (Crossmatch, Inc.) [File not signed] C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice2.dll
2020-04-30 12:40 - 2020-04-30 12:40 - 000456192 _____ (Crossmatch, Inc.) [File not signed] C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice5.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\safro\Downloads\dům 1.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]
AlternateDataStreams: C:\Users\safro\Downloads\dům 2.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\sharepoint.com -> hxxps://zuzanasafrova-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2022-09-18 14:57 - 000000027 ____N C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\safro\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\19986_en_1.jfif
DNS Servers: 62.24.64.2 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt68cx21x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "PenTablet"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\StartupApproved\StartupFolder: => "CEWE služba na pozadí.lnk"
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_8B3575D364394B552A9C25D557FBDA68"
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001\...\StartupApproved\Run: => "Mozilla-Firefox-308046B0AF4A39CB"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{4D441A47-E117-4CF7-82EF-3660804B0D0B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9847D37C-418A-4F12-8172-542853480EDF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F5157E1-8A98-4F9D-B87C-A488B5DD6A9A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CF91ED9B-4FC0-478C-A2B1-CC3362A67993}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A7D7256C-5086-4E3C-AF56-7F861233E55E}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File
FirewallRules: [{79588B28-F54B-4D3A-9055-F764571B0DC6}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File
FirewallRules: [{614A9769-FD95-46F3-A710-CC73E76EB958}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerCompress\ApowerCompress.exe (Apowersoft Ltd -> Wangxu Technology Co.,Ltd.)
FirewallRules: [{0E6A422F-B807-440E-A9BA-8423B81DC310}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerCompress\ApowerCompress.exe (Apowersoft Ltd -> Wangxu Technology Co.,Ltd.)
FirewallRules: [{05A444B4-9C3E-443A-8C18-11209D7F352A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{68894127-E1B4-44C1-B7E8-DB53FD91DD53}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5158859D-AE2A-4FA9-8CF7-A99A858BC518}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{745668C2-1AEB-4D2E-945E-B1A7E74C15E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3B2A4243-1E39-4C08-B1D0-AC9FD6F43376}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9386FE13-9B9B-4085-B8D7-C7C9F8192F91}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{52903155-8411-4A53-B145-89115C2276BD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3A5AD9BB-CD5E-4D07-87BF-AD659A9DC7FA}] => (Allow) C:\Program Files\HP\Sure Click\4.4.19.1661\servers\manifests\chrome\brchromium\128.0.6613.170\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{67888BE2-FB49-444D-AA82-10E574D9AD25}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
FirewallRules: [{879A9330-97A2-4E8B-9D58-C6A8920BC32A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A3BF6E14-4CAB-40CF-BCB6-8F001BF040AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8909FB53-975B-48E0-BE3E-56466BBAFA88}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CDA112CA-4BA8-41AE-A11C-5D7B2F0624DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9F475BF7-A164-40BB-A0FE-57D90D436AA3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A9F11CBA-C823-41A6-A55A-599D471103AA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0B1E0972-0468-4447-AA5C-211AFF0E649D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{960A07D8-958C-41DD-84E4-9B43D513D79A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{774AAED1-2780-4B13-A39A-F25664F9B1B7}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A8B45281-004B-46BD-96BC-0E002774730B}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.402.3249.3850_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8253C58-A590-4860-AEB3-9C439AAAE94C}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.402.3249.3850_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F98A959-9F82-47A2-9BE5-BF8F7C770274}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23EFF1FD-E516-44A5-A3FA-7BAB971F6CFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CE12D3A4-83A3-481B-A2D6-658902E521DB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CED908E9-B83D-4964-83E8-523C7033EEC6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5F810555-EDE7-479A-93A3-ADDC1A8C0B33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30F3E386-A5D5-4A8A-BF40-BD66AF376529}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5785CD7B-45D6-46C2-A02D-803B1F86A0B4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1B4FEAE8-7142-41C2-905F-9CCA0D8F5546}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{90D72053-3B63-40E0-A4B6-CE7F2FCB6EB6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45FDDEDB-CD99-4A6E-8ECB-D5A7CE4991D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FF26DED4-93E6-4011-83B1-EC55F68A56AB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

28-11-2024 15:19:58 Grab_MSIExecute
03-12-2024 08:44:34 Windows Update
03-12-2024 08:44:34 Windows Update
03-12-2024 18:51:35 AdwCleaner_BeforeCleaning_03/12/2024_18:51:34
03-12-2024 19:17:06 AdwCleaner_BeforeCleaning_03/12/2024_19:17:05

==================== Faulty Device Manager Devices ============
Name: HP Q03 System Firmware
Description: HP Q03 System Firmware
Class Guid: {f2e7dd72-6468-4e36-b6f1-6488f42c1b52}
Manufacturer: HP Inc.
Service:
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (12/03/2024 07:17:22 PM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (12320,R,98) WebPlatStorage: Pokus o otevření souboru C:\Users\safro\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.chk pro čtení nebo zápis selhal. Došlo k systémové chybě 1296 (0x00000510): Požadovaná operace se souborem se nezdařila, protože zásady úložiště blokují tento typ souboru. Další informace získáte od správce systému. . Operace otevření souboru selže a dojde k chybě -1022 (0xfffffc02).

Error: (12/03/2024 04:34:58 PM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (10136,R,98) WebPlatStorage: Pokus o otevření souboru C:\Users\safro\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.chk pro čtení nebo zápis selhal. Došlo k systémové chybě 1296 (0x00000510): Požadovaná operace se souborem se nezdařila, protože zásady úložiště blokují tento typ souboru. Další informace získáte od správce systému. . Operace otevření souboru selže a dojde k chybě -1022 (0xfffffc02).

Error: (12/03/2024 04:34:54 PM) (Source: HotKeyServiceUWP) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/03/2024 09:00:12 AM) (Source: HotKeyServiceUWP) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/03/2024 09:00:12 AM) (Source: HotKeyServiceUWP) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/03/2024 09:00:12 AM) (Source: HotKeyServiceUWP) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/02/2024 08:18:25 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: spoolsv.exe, verze: 10.0.22621.4391, časové razítko: 0x29736ca0
Název chybujícího modulu: usbmon.dll, verze: 10.0.22621.4249, časové razítko: 0xd85ba312
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002358d
ID chybujícího procesu: 0x0x129c
Čas spuštění chybující aplikace: 0x0x1db440ac91dafe7
Cesta k chybující aplikaci: C:\WINDOWS\System32\spoolsv.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\usbmon.dll
ID zprávy: 0cba09b4-031a-4f20-bc45-0277e5fc045d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/02/2024 06:49:02 PM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (11260,R,98) WebPlatStorage: Pokus o otevření souboru C:\Users\safro\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.chk pro čtení nebo zápis selhal. Došlo k systémové chybě 1296 (0x00000510): Požadovaná operace se souborem se nezdařila, protože zásady úložiště blokují tento typ souboru. Další informace získáte od správce systému. . Operace otevření souboru selže a dojde k chybě -1022 (0xfffffc02).


System errors:
=============
Error: (12/03/2024 07:19:15 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-B59IHMH)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Security Update Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Sure Click Endpoint Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP CASL Framework Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP LAN/WLAN/WWAN Switching UWP Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP DSU LAN/WLAN/WWAN Switching Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management Engine WMI Provider Registration byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/03/2024 07:17:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Storage Middleware Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================Event[0]

Date: 2023-04-04 17:32:23
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===============
Date: 2024-12-03 19:28:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: HP R03 Ver. 02.13.00 03/24/2022
Motherboard: HP 8599
Processor: Intel(R) Core(TM) i5-9500 CPU @ 3.00GHz
Percentage of memory in use: 36%
Total physical RAM: 16222.29 MB
Available physical RAM: 10290.14 MB
Total Virtual: 32606.29 MB
Available Virtual: 26622.26 MB

==================== Drives ================================

Drive c: (Windows ) (Fixed) (Total:475.99 GB) (Free:197.56 GB) (Model: WDC PC SN520 SDAPNUW-512G-1006) (Protected) NTFS
Drive f: (2020 Elements) (Fixed) (Total:2794.49 GB) (Free:2716.13 GB) (Model: WD Elements 25A3 USB Device) NTFS
Drive g: (Elements) (Fixed) (Total:1862.98 GB) (Free:1558.23 GB) (Model: WD Elements 107C USB Device) NTFS

\\?\Volume{b6f8fb7c-259c-467e-96e7-cf221b314ba1}\ (Windows RE Tools) (Fixed) (Total:0.67 GB) (Free:0.07 GB) NTFS
\\?\Volume{f2dd5105-3d43-4ecb-9619-823b99375fc3}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 390A4304)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: D954268B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 2794.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================

Zdravím!
Nevím proč, ale s takovám problémmem dosud nikdo sem nepřišel. Bylo by dobré zjistit, od kdy, případně od instalace čeho se tento problém čas od času objevuje. Prozatím vyčistíme. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
Task: {2E6DA22B-035B-452E-8050-E6DDAD07AD67} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{80A58D93-CD4A-4041-9B61-3932CBCA7D0B} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884576 2024-10-15] (Google LLC -> Google LLC)
Task: {D94A009E-0BB2-4628-B521-C4F682638EFA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{41C235AC-2E35-4E5F-BEA1-AFBCB4742EFF} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-11-12] (Google LLC -> Google LLC)
Task: {DB5845A0-A548-49BB-8035-A6B0CB2330CF} - System32\Tasks\HPSupportTool => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-iolo-collector_ver_4.675.11370\HPSupportAssistant1.exe (No File)
Error reading preferences. Please check "Secure Preferences" file for possible corruption. <==== ATTENTION
C:\DumpStack.log.tmp
CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\safro\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll => No File
AlternateDataStreams: C:\Users\safro\Downloads\dům 1.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]
AlternateDataStreams: C:\Users\safro\Downloads\dům 2.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]
FirewallRules: [{A7D7256C-5086-4E3C-AF56-7F861233E55E}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File
FirewallRules: [{79588B28-F54B-4D3A-9055-F764571B0DC6}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Dobrý večer, děkuji, vykonala jsem, ale první log z poz. bloku jsem omylem smázla
vytvořila jsem tedy druhý...

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by safro (03-12-2024 20:32:29) Run:7
Running from C:\Users\safro\Desktop
Loaded Profiles: safro
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
Task: {2E6DA22B-035B-452E-8050-E6DDAD07AD67} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{80A58D93-CD4A-4041-9B61-3932CBCA7D0B} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884576 2024-10-15] (Google LLC -> Google LLC)
Task: {D94A009E-0BB2-4628-B521-C4F682638EFA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{41C235AC-2E35-4E5F-BEA1-AFBCB4742EFF} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-11-12] (Google LLC -> Google LLC)
Task: {DB5845A0-A548-49BB-8035-A6B0CB2330CF} - System32\Tasks\HPSupportTool => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-iolo-collector_ver_4.675.11370\HPSupportAssistant1.exe (No File)
Error reading preferences. Please check "Secure Preferences" file for possible corruption. <==== ATTENTION
C:\DumpStack.log.tmp
CustomCLSID: HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\safro\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll => No File
AlternateDataStreams: C:\Users\safro\Downloads\dům 1.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]
AlternateDataStreams: C:\Users\safro\Downloads\dům 2.jpeg:3or4kl4x13tuuug3Byamue2s4b [105]
FirewallRules: [{A7D7256C-5086-4E3C-AF56-7F861233E55E}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File
FirewallRules: [{79588B28-F54B-4D3A-9055-F764571B0DC6}] => (Allow) C:\Users\safro\Downloads\4ukey(1).exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.

"C:\WINDOWS\system32\GroupPolicy\Machine" Folder move:

C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully

"C:\WINDOWS\system32\GroupPolicy\User" Folder move:

C:\WINDOWS\system32\GroupPolicy\User => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Edge => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E6DA22B-035B-452E-8050-E6DDAD07AD67}" => not found
"C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{80A58D93-CD4A-4041-9B61-3932CBCA7D0B}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{80A58D93-CD4A-4041-9B61-3932CBCA7D0B}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D94A009E-0BB2-4628-B521-C4F682638EFA}" => not found
"C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{41C235AC-2E35-4E5F-BEA1-AFBCB4742EFF}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{41C235AC-2E35-4E5F-BEA1-AFBCB4742EFF}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB5845A0-A548-49BB-8035-A6B0CB2330CF}" => not found
C:\WINDOWS\System32\Tasks\HPSupportTool => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPSupportTool" => removed successfully
Error reading preferences. Please check "Secure Preferences" file for possible corruption. <==== ATTENTION => Error: No automatic fix found for this entry.
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
HKU\S-1-5-21-3530282796-2492871232-3359154168-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92} => not found
C:\Users\safro\Downloads\dům 1.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\safro\Downloads\dům 2.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A7D7256C-5086-4E3C-AF56-7F861233E55E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{79588B28-F54B-4D3A-9055-F764571B0DC6}" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 786432 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9997945 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 12544 B
Edge => 0 B
Chrome => 0 B
Firefox => 14855616 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 6170 B
NetworkService => 6170 B
safro => 76967 B

RecycleBin => 10674 B
EmptyTemp: => 24.6 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-12-2024 20:33:50)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 20:33:50 ====

OK. Nastala nějaká změna?

ještě dodávám podrobnější, ale laický popis problému - já nevím, jak bych ten problém správně měla popsat - spustila jsem PC, a už to, že se mi automaticky nezaktivuje numerická klávesnice, značí, že se něco bude dít. Což bylo včera a do té doby od minulé opravy nic. Vše OK.
Nehraju hry, nestahuju nic, jen aktualizuju většinou Firefox na výzvu )což bylo cca předevčírem) nebo Win aktualizace( a ty tak 3 týdny zpět)
Dnes spuštěn PC - naběhla obrazovka, kvůli heslu jsem musela aktivovat numerickou klávesnici, po přihlášení naběhla plocha a za chvíli stop, zamrznutí, jakoby posunutí obrazovky o 1 cm doprava a nic nereaguje (nebo obrazovka problikává v různých barvách a čarách nebo řádcích), nereaguje ani spuštění správce úloh )ctr + alt + del).. nutno tvrdé vypnutí a zapnutí.

během psaní popisu problému (tedy i po restaru fix)- se to také seklo

Zde: https://wintip.cz/452-jak-automaticky-a ... tu-windows najdete několik tipů, jak trvale aktivovat NumLock. Bohužel je třeba zasáhnout do registry Windows, takže pozor. Stručný návod na práci s registry. Proč se to stalo, nevím, možná to způsobila některá instalace, nebo aktualizace systému.

dobré ráno,
děkuji, juknu na to. teď jsem na chvíli zapla Pc, tak uvidím a pak ještě tedy odpoledne. Ozvu se večer, jestli se něco (nebo raději nic) děje.

OK. I večer bych tu měl být.

Dobrý večer, tak po zapnutí Pc (cca před 15 min) do této chvíle se mi to zaseklo asi 4 x. Nestačila jsem ani otevřít email. Teď drží už asi 10 min, proto píšu.
Asi 2 x jsem nestačila ani zadat heslo pro přihlášení (začala blikat obrazovka s blikajícími čarami a pak stop, po třetí jsem se dostala dál- k přihlášení do emailu- pak se to zaseklo, po čtvrté mě to po dalším spuštění hodilo na modrou obrazovku win, že se systém pravděpodobně nezavedl správně s nabídkou dalších kroků, stihla jsem dát restart... zatím jsem tu

OK. Vypadá to po tom, co teď říkáte, buď na problém s hardwarem, nebo na poškozený systém. Koukněte se do c:\windows\minidump a pokud tam najdete nějaké soubory, zabalte je do raru a přiložte k vašem příštímu postu.

složka je prázdná

OK. Stáhněte a spusťte HWMonitor: https://www.instaluj.cz/hwmonitor. Po spuštění vyčkejte několik sekund a pak dejte screen obrazovky. Snad se něčeho dopídíme.

snad jsem to učinila správně...


HWMonitor Readme file
----------------------

Version 1.52
September 2023
Contact : cpuz@cpuid.com
Web page: https://www.cpuid.com/softwares/hwmonitor.html
CPUID SDK : https://www.cpuid-pro.com/products-syst ... ng-kit.php

History
-------

1.52 - September 2023
--------------------------------------------------------------------------------------------------
- Intel Core i9-14900K/KF (24c), Core i7-14700K/KF (20c), Core i5-14600K/KF (14c).
- Support of Intel Core 3, 5, 7 and Core Ultra 5, 7, 9 new branding.
- Preliminary support for Intel Meteor Lake.
- AMD Radeon RX 7800 XT and 7700 XT (Navi 32).

--------------------------------------------------------------------------------------------------
1.51 - June 2023
- AMD Ryzen Z1 and Z1 Extreme.
- AMD Ryzen 9 7940H & HS, Ryzen 7 7840HS (Phoenix).
- AMD Dragon Range Ryzen 9 7945HX (16c/55-75W), 7845HX (12c/45-75W), Ryzen 7 7745HX (8c/45-75W), 7645HX (6c/45-75W).
- Intel Core i9 13980HX, 13900HX, 13900HK, Core i7 13700H, 13650HX, Core i5 13500HX, 13420H.
- Intel N97, N95 and N50 (ADL-N, 6W to 15W).
- Zhaoxin C-1080 IGP (KX-6000G).
- Zhaoxin KH-40000 YongFeng (12/16/32c).
- NVIDIA RTX 4060 Ti (AD106-350).
- AMD Radeon RX 7600 (Navi 33 XL).

--------------------------------------------------------------------------------------------------
1.50.1 - March 2023
- Loading dialog (1.50.1).
- Fix RTX 4090/4080/4070 detection bug (1.50.1).
- Fix DMI crash bug (1.50.1).
- Preliminary support for AMD Storm Peak platform.
- Improved support of AMD Radeon 6950 XT.
- Zhaoxin KX-6000G/4 CPU.
- Intel Xeon Sapphire Rapids platform.
- Intel N100 and N200 (ADL-N).
- Intel Core i3 N300 and N305 (ADL-N).
- Intel Core i5 13450HX, 13500HX, Core i7 13650HX, 13700HX (55W).

--------------------------------------------------------------------------------------------------
1.49 - January 2023
- Intel Core i9 13900KS.
- AMD Ryzen 9 7950X3D, 7900X3D, Ryzen 7 7800X3D.
- AMD Ryzen 9 7900, Ryzen 7 7700, Ryzen 5 7600.
- AMD Radeon 7900 XT/XTX.
- NVIDIA RTX RTX 4070 Ti.
- DDR5 VDD/VDDQ/VDDP,VOUT 1.8V & 1.0 voltages.

--------------------------------------------------------------------------------------------------
1.48 - December 2022
- NVIDIA GPU power rails.
- NVIDIA RTX 4080 16GB (AD103).
- AMD Ryzen 5 7535H (zen3+, 6C/12T), Ryzen 7 7735HS (zen3+, 8C/16T).
- AMD Athlon Gold 7220U, Ryzen 3 7320U, Ryzen 5 7520U (MDN-A0, 15W).
- Intel Core i5 13450HX, 13500HX, Core i7 13650HX, 13700HX (55W).
- Intel Core i5 13420H, 13500H and Core i7 13620H (RPL, 45W).
- Intel Core i7 12850HX (8P+8E, 55W).
- Preliminary support for AMD Radeon RX 7900 XT/XTX (Navi 31).

--------------------------------------------------------------------------------------------------
1.47 - October 2022
- Intel Core i9-13900/K/F/KF, Core i7-13700/K/F/KF, Core i5-13600/K/F/KF, Core i5-13500, Core i5-13400 and Core i3-13100.
- Intel Core i9 13900HK, Core i7 13700H.
- Intel Z790 and B760 chipsets.
- Intel ARC A770, A750, A580 (ACM-G10) and A380 (ACM-G11) GPUs.
- AMD Ryzen 9 7950X, Ryzen 9 7900X, Ryzen 7 7700X, Ryzen 5 7600X.
- AMD X670E/B650 chipsets.
- AMD Radeon RX 6950 XT (Navi 21 KXTX), RX 6750 XT (Navi 22 KXT), RX 6650 XT (Navi 23 KXT) and RX 6400 (Navi 24 XL).
- NVIDIA RTX 4090 GPU.
- Gigabyte AORUS 1200W Platinium PSU monitoring.

--------------------------------------------------------------------------------------------------
1.46 - April 2022
- Improved sensors organization in tree display.
- New "max" sensors for CPU VID, CPU core temperatures and CPU core powers.
- Glenfly Arise-GT10C0 GPU (Arise).
- Intel Core i9-12900T, Core i5-12600T (35W).
- Intel Core i7-1280P/1270P/1260P, Core i5-1250P/1240P, Core i3-1220P (28W).
- Intel Core i7-1265U/1255U, Core i5 1245U/1235U, Core i3 1215U (15W).
- Intel Core i7-1260U/1250U, Core i5 1240U/1230U, Core i3 1210U (9W).
- Intel Atom x6427FE, x6425RE, x6425E, x6414RE, x6413E, x6212RE, x6211E, x6200FE (EHL, FCBGA1493).
- Intel Pentium J6425, N6415 (EHL, FCBGA1493).
- Intel Celeron J6413, N6211 (EHL, FCBGA1493).
- Intel Xeon Platinum, Gold and Silver "Ice Lake-SP" (10nm, FCLGA4189).
- Preliminary support for Intel Raptor Lake (13th gen).
- Preliminary support for Intel ARC 3/5/7 (DG2).
- AMD Ryzen 9 6980HX, 6900HX, Ryzen 7 6800H, Ryzen 5 6600H (45W).
- AMD Ryzen 9 6980HS, 6900HS, Ryzen 7 6800HS, Ryzen 5 6600HS (35W).
- AMD Ryzen 7 5800X3D.
- AMD Ryzen 7 5700X, Ryzen 5 5600/5500.
- AMD Ryzen 7 6800U, Ryzen 5 6600U (15-28W).
- AMD Ryzen 7 5825U, Ryzen 5 5625U, Ryzen 3 5425U (15W).
- AMD Ryzen 7 4800U (15W).
- AMD Ryzen 3 5300GE, Ryzen 3 PRO 5350GE, Ryzen 5 PRO 5650GE, Ryzen 7 PRO 5750GE (CZN).
- AMD Rembrandt & Raphael APUs (RDNA2).
- Preliminary support for AMD Phoenix (Zen 4, FP8).
- Preliminary support for AMD Raphael (Zen 4).
- AMD Radeon RX 6500 XT (Navi 24 XT), RX 6400 (Navi 24 XL).
- AMD Radeon RX 6850M XT (Navi 22).
- AMD RX 6800S, RX 6700S, RX 6650M, RX 6650M XT (Navi 23).
- NVIDIA GeForce RTX 3090 Ti (GA102-350, 450W).

--------------------------------------------------------------------------------------------------
1.45 - November 2021
- Intel 12th gen Alder Lake processors, Z6xx platform and DDR5 memory.
- AMD Radeon 6600XT GPU.
- Hard disks activity and read/write speeds.

--------------------------------------------------------------------------------------------------
1.44 - April 2021
- Preliminary support of Intel Alder Lake and Z6xx platform.
- Preliminary support of DDR5 memory.
- AMD Ryzen 5700G, 5600G and 5300G APUs.
- AMD Radeon RX 6900 XT and 6700 XT GPUs.
- Added hotspot and GDDR6 temperatures on NVIDIA GPUs.

--------------------------------------------------------------------------------------------------
1.43 - November 2020
- AMD Ryzen 5000 "Zen 3" Vermeer support.
- AMD Radeon 6800 and 6800 XT GPUs.
- Intel Rocket Lake processors preliminary support.
- Intel Tiger Lake-U and Tiger Lake-H processors.
- Intel Z590 chipset.
- NVIDIA RTX 3090, 3080, 3070 GPUs.

--------------------------------------------------------------------------------------------------
1.42 - September 2020
- AMD Ryzen 9 3900XT, Ryzen 7 3800XT and Ryzen 5 3600XT, Ryzen 7 PRO 4750G, Ryzen 5 PRO 4650G, Ryzen 3 PRO 4350G processors.
- AMD B550 chipset.
- Intel Comet Lake, Tiger Lake processors.
- Intel Z490/W480/B460 chipsets.
- Hygon processors.

--------------------------------------------------------------------------------------------------
1.41 - September 2019
- Intel Cascade Lake and Ice Lake processors.
- NVIDIA RTX 2070 and 2080 Super.
- AMD Threadripper 3000 preliminary support.
- Zhaoxin processors.

--------------------------------------------------------------------------------------------------
1.40 - March 2019
- AMD Radeon VII.
- NVIDIA GTX 1660 and 1660 Ti.

--------------------------------------------------------------------------------------------------
1.39 - February 2019
- NVIDIA GeForce RTX serie 20 (multiple fans).
- Intel Basin Falls Skylake-X refresh.

--------------------------------------------------------------------------------------------------
1.38 - November 2018
- Intel Gemini Lake family.
- Intel Xeon E processors.
- Fix issue with multiple graphics devices.

--------------------------------------------------------------------------------------------------
1.37 - October 2018
- Improved support of Z390 mainboards.
- New performance limits indicators (NVIDIA GPUs)
- Fix GPU utilization bug reported at 0%.

--------------------------------------------------------------------------------------------------
1.36 - September 2018
- AMD Threadripper 2000 processors.
- Intel 9th generation Core family (Coffee Lake 9900K, 9700K, 9600K, 9600, 9500 and 9400).
- Intel Coffee Lake-U processors.
- Preliminary support of ASUS WMI monitoring.

--------------------------------------------------------------------------------------------------
1.35 - April 2018
- AMD Ryzen 2000 processors.
- Intel Xeon Bronze / Silver / Gold / Platinium processors.
- Improved Intel IGP monitoring.
- Improved HDD monitoring.

--------------------------------------------------------------------------------------------------
1.34 - December 2017
- AMD Raven Ridge processors.
- Windows 10 Build 16299.
- Improved NVIDIA GPUs monitoring.

--------------------------------------------------------------------------------------------------
1.33 - October 2017
- Intel Coffee Lake processors and Z370 platform.
- Intel Skylake-X HCC processors.
- Intel Xeon Skylake-SP and Xeon W Skylake processors.

--------------------------------------------------------------------------------------------------
1.32 - August 2017
- Intel Core X processors (KBL-X and SKL-X) and X299 platform.
- AMD ThreadRipper and X399 platform.

--------------------------------------------------------------------------------------------------
1.31 - March 2017
- AMD Ryzen processors.
- AMD Polaris GPU power report.

--------------------------------------------------------------------------------------------------
1.30 - October 2016
- Corsair Hydro series CPU coolers (H80i, H100i, H110i, H115i) support.
- Corsair RMi and AXi series PSUs support.
- NVMe SSDs support.
- Intel Kaby Lake processors.
- AMD Bristol Ridge processors.
- NVIDIA Pascal GPUs (GTX10x0).

--------------------------------------------------------------------------------------------------
1.29 - June 2016
- Intel Broadwell-E/EP processors.
- Intel Skylake Pentium and Celeron.
- AMD Carrizo APUs.
- Adds disks volumes space utilisation.

--------------------------------------------------------------------------------------------------
1.28 - July 2015
- Intel Broadwell and Intel Skylake CPUs.
- Added indivudual CPU load.
- Added NVIDIA TDP percentage

--------------------------------------------------------------------------------------------------
1.27 - March 2015
- Report CPU and GPU clocks.
- Intel Core M CPUs and preliminary support of Intel Skylake.

--------------------------------------------------------------------------------------------------
1.26 - December 2014
- Added CPU and GPU utilization.
- Added DRAM power (Haswell processors).
- Intel X99 Platform (DDR4 and Haswell-E).
- Support for Windows 10.
- New application icon.

--------------------------------------------------------------------------------------------------
1.25 - May 2014
- Intel Haswell-E, Core i7-4770R and Core i5-4570R Crystal Well, Celeron Haswell (G1830, G1820).
- AMD Athlon 5350 & 5150, Sempron 3850 & 2650 (Kabini), A10-7850K, A10-7800, A10-7700K, A8-7600, A6-7400K, A4-7300 (Kaveri), A6-6420K, A4-6320, A4-4020 (Richland).
- Nuvoton NCT6106 and SMSC SCH5636 SIOs (Fujitsu mainboards).

asi to mělo být toto