VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu a BIOSu

https://forum.viry.cz:443/viewtopic.php?t=160291

Stránka 1 z 2

Kontrola logu a BIOSu

Napsal: 22 úno 2025 12:19
od danek
Dobrý den,

dnes ráno jsem zapnul počítač a spustila se nějaká HP aplikace, kde probíhal BIOS update. Pak se restartoval počítač a znovu se spustil ten BIOS update nějaká oprava systému. Pak zase restart, tentokrát už ne BIOS update, ale modrá obrazovka, že jsou chyby v systému a že se musí systém restartovat. Po restartu, že systém se nepodařilo opravit a nový restart. To se opakovalo několikrát. Pak v nabídce opravit jinak jsem zkoušel postupně všechny možnosti- odinstalovat předchozí aktualizaci, obnovit systém do dřívějšího bodu- objevilo se, že neexistuje žádný dřívější bod obnovy, několikrát restart a oprava systému a nic. Zbývala poslední možnost uvést systém do továrního nastavení, to jsem ale nechtěl, abych nepřišel o data. Už jsem myslel, že počítač nenastartuju. Pak se ale asi po hodině najednou při zapnutí spustil a normálně naběhly Windows jako by se nic nestalo. Ale je mi to divné, trochu se obávám, aby se za chvíli neobjevily stejné problémy a proto prosím o kontrolu logu a případně pokud by to bylo možné nějakou analýzu, co se mohlo v systému přihodit a jestli není BIOS nějak napadený.

Děkuji

Log z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-02-2025
Ran by Dan (administrator) on JILM (HP HP Pavilion x360 Convertible 14-dh0xxx) (22-02-2025 12:26:22)
Running from C:\Users\danie\Desktop\FRST64.exe
Loaded Profiles: Dan & Dan2
Platform: Microsoft Windows 11 Home Version 24H2 26100.1 (X64) Language: Čeština (Česko)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Users\danie\Desktop\FRST64.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2410.21.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <3>
(DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\BridgeCommunication.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(ELAN Microelectronics Corporation -> ELAN) [File not signed] C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <46>
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_ece153ca769ec179\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\TPMProvisioningService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.6-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.6-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25012.50.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\danie\AppData\Local\Microsoft\OneDrive\25.015.0126.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [238280 2019-04-22] (ELAN Microelectronics Corporation -> ELAN) [File not signed]
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [539152 2024-04-25] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4088384 2025-02-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1004\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [539152 2024-04-25] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [539152 2024-04-25] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\...\Run: [MicrosoftEdgeAutoLaunch_3762827024F2BC8742A29B83D37892ED] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4088384 2025-02-20] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\133.0.6943.127\Installer\chrmstp.exe [2025-02-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-02-16]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Log z Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-02-2025
Ran by Dan (22-02-2025 12:24:18)
Running from C:\Users\danie\Desktop
Microsoft Windows 11 Home Version 24H2 26100.1 (X64) (2025-02-22 10:40:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-93754314-3111490570-4120607304-500 - Administrator - Disabled)
Dan (S-1-5-21-93754314-3111490570-4120607304-1001 - Administrator - Enabled) => C:\Users\danie
Dan2 (S-1-5-21-93754314-3111490570-4120607304-1525 - Administrator - Enabled) => C:\Users\Dan2
DefaultAccount (S-1-5-21-93754314-3111490570-4120607304-503 - Limited - Disabled)
Guest (S-1-5-21-93754314-3111490570-4120607304-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-93754314-3111490570-4120607304-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee (Enabled - Up to date) {0BE13B34-492A-21C0-AE43-C1742279CCB6}
FW: McAfee (Enabled) {33DABA11-0345-2098-851C-6841DCAA8BCD}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 25.1.9816.2473 - Gen Digital Inc.)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 25.1.11083.14496 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.25 - ELAN microelectronics Crop.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 133.0.6943.127 - Google LLC)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Intel(R) Chipset Device Software (HKLM\...\{D4DC16D3-5547-4A3B-A9EB-FF9B4C2EA4A1}) (Version: 10.1.17969.8134 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{4625C928-49BB-44DC-92E3-B9EC0972C72D}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0854C811-6DAD-441D-AB36-2F73631A04A1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{7715518B-08D0-4754-BB81-FE4FC61DFDF7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{4C230277-5515-4B51-B9E6-97880684B10C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{FEB772C1-919E-4145-9691-AFFAC915496F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.18429.20158 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.18429.20158 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.18429.20158 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 133.0.3065.82 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 133.0.3065.82 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\OneDriveSetup.exe) (Version: 25.015.0126.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-93754314-3111490570-4120607304-1525\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{2FAF2A80-5906-467E-8AD2-B83C94383600}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F85F7FF0-5DFF-4BC0-9045-C9573D1BC11F}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18429.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18429.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.1010 - McAfee, LLC)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2025-02-16] (Amazon.com)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2025-02-16] (INTEL CORP) [Startup Task]
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2025-02-21] (HP Inc.)
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2025-02-21] (Priceline Partner Network)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.30.0_x64__xbfy0k16fey96 [2025-02-17] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2025-02-21] (HP Inc.)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.3.176.0_x64__dt26b99r8h8gj [2025-02-16] (Realtek Semiconductor Corp)
HP CoolSense -> C:\Program Files\WindowsApps\ad2f1837.hpcoolsense_1.0.6.0_x64__v10z8vjag6ke6 [2025-02-16] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2025-02-21] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2025-02-21] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_157.1.1186.0_x64__v10z8vjag6ke6 [2025-02-16] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.41.29.0_x64__v10z8vjag6ke6 [2025-02-16] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6 [2025-02-16] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-02-16] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1041.0_x64__8j3eq9eme6ctt [2025-02-21] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa [2025-02-21] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.42.0_x64__w1wdnht996qgy [2025-02-21] (LinkedIn) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-02-16] (Microsoft Corp.)
Microsoft Office Outlook Desktop Integration -> C:\Program Files\WindowsApps\Microsoft.OutlookDesktopIntegrationServices_16009.11426.10000.0_x64__8wekyb3d8bbwe [2025-02-16] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe [2025-02-16] (Microsoft Corporation)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16 [2025-02-17] ()
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.5.22.0_x64__kx24dqmazqk8j [2025-02-21] (Random Salad Games LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{7d043d4e-4259-f459-3630-7b434fd7752c}\localserver32 -> C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe (HP Inc. -> HP Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-21] (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\danie\Desktop\Daniel - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\danie\anaconda3\Scripts\activate.bat C:\Users\danie\anaconda3

==================== Loaded Modules (Whitelisted) =============

2019-05-14 00:54 - 2019-05-14 00:54 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2019-05-14 00:54 - 2019-05-14 00:54 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2024-12-17] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-12-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2024-12-17] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-20] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\Desktop\IMG_3520.JPG
HKU\S-1-5-21-93754314-3111490570-4120607304-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Avast SecureLine VPN: Avast SecureLine Wintun Adapter -> aswWintun.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Realtek RTL8822BE 802.11ac PCIe Adapter -> rtwlane.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B692B681-7AEA-4951-8864-BA229B8B2825}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3F19ED26-02E1-4BC6-9027-ADAB82B45C06}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B77654EF-7B13-4BC6-8553-94FD3112F03A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F01E548F-BB7B-4A10-9D1A-1D0CDA329E4B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B7A39AC9-0016-4ED4-918A-6FF4D0B0EB30}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{5C5D0ADF-3E40-4868-870C-77521EE32E9D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{498B20CE-B41D-4ACE-8AF9-D5716DDB4694}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E9B99E64-8534-495F-BD0F-8DC6D5EA885E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{132FE404-8D3A-4527-8C00-A8387CC8A05F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12135.3.3021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{7D52032E-C37A-4122-B4A1-1618C69F610A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.136.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{67FEAEA2-F90B-4ABE-9F39-57B7AD3E067B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.136.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{055FF398-C9D6-4EAD-ABA5-B22AB9CAB530}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.136.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{63E7F285-DC65-41AE-B407-6EC048DB816B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.136.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{196AB19B-0E45-4809-8BD9-EFEB7FB5D2AE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2083C908-2D73-4C82-A179-96C56E3D778A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0AAA8A88-2224-4FC8-A7EA-DC0B2A9D4BB8}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File
FirewallRules: [{76F09D66-853C-4523-A9D6-179DAA3C499B}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{4E1225A0-5B2D-417C-AB51-09537656FBC9}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5616C9AA-2CA6-4856-9351-F0E19AA0E9AE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{347AC5F1-765B-4B7E-BC55-E0DC65671D5F}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{78834D2A-EBA7-412F-B198-612D069D4650}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{3A111B96-1512-4E4C-A5B6-45F681239727}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\133.0.3065.82\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E5CAABBA-00BA-41AC-9133-29AAAFD442E9}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25017.203.3370.1174_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{519FDA33-8C83-4BB5-B6BD-6BA18170ECCC}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25017.203.3370.1174_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:237.15 GB) (Free:44.52 GB) (19%)

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (02/22/2025 11:57:58 AM) (Source: Application Error) (EventID: 1000) (User: JILM)
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.26100.1, časové razítko: 0x9da06364
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.26100.1, časové razítko: 0x1c55a4ea
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000009d6be
ID chybujícího procesu: 0x11f8
Čas spuštění chybující aplikace: 0x1db85162f508b3e
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID sestavy: d9edcd88-288c-4b8b-a784-68b73e6e2055
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (02/22/2025 10:22:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: Služba Šifrování neinicializovala záložní objekt System Writer systému VSS.

Details:
Could not query the status of the EventSystem service.

System Error:
Probíhá vypnutí systému..


System errors:
=============
Error: (02/22/2025 11:39:53 AM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: Služba protokolování událostí zjistila při inicializaci publikačních prostředků chybu v kanálu Intel-SST-BUS/Debug. V případě analytického nebo ladicího typu kanálu to může znamenat, že došlo také k chybě při inicializaci přihlašovacích prostředků.

Error: (02/22/2025 11:39:44 AM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x000000ef (0xffffb608791da080, 0x0000000000000000, 0xffffb608791da080, 0x0000000000000000)C:\WINDOWS\Minidump\022225-9468-01.dmp355d07ce-9cdf-4270-9049-7c35d1934c86

Error: (02/22/2025 11:39:38 AM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.

Error: (02/22/2025 10:22:28 AM) (Source: DCOM) (EventID: 10005) (User: Window Manager)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby DispBrokerDesktopSvc s argumenty Není k dispozici za účelem spuštění serveru:
DispBrokerDesktop.GlobalBrokerInstance

Error: (02/22/2025 10:22:25 AM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x000000ef (0xffffab04a8d19040, 0x0000000000000000, 0xffffab04a8d19040, 0x0000000000000000)C:\WINDOWS\Minidump\022225-11359-01.dmp95c9f898-1e73-4dfb-9b5d-8012f421007a

Error: (02/22/2025 10:22:18 AM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.

Error: (02/21/2025 11:51:27 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.

Error: (02/21/2025 11:48:03 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: Služba protokolování událostí zjistila při inicializaci publikačních prostředků chybu v kanálu Intel-SST-BUS/Debug. V případě analytického nebo ladicího typu kanálu to může znamenat, že došlo také k chybě při inicializaci přihlašovacích prostředků.


CodeIntegrity:
===============
Date: 2025-02-22 11:58:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.25 03/27/2024
Motherboard: HP 85C4
Processor: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz
Percentage of memory in use: 82%
Total physical RAM: 8002.3 MB
Available physical RAM: 1374.63 MB
Total Virtual: 10946.3 MB
Available Virtual: 3864 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.15 GB) (Free:44.51 GB) (Model: SK hynix BC501 HFM256GDJTNG-8310A) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:0.01 GB) (Model: WDC WD10SPZX-60Z10T0) NTFS

\\?\Volume{7069b8fa-8139-4eca-8274-7f4616022b76}\ () (Fixed) (Total:1.05 GB) (Free:0.12 GB) NTFS
\\?\Volume{73ee637a-f6bf-4282-8ec2-3d4bb3c69d1d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0C9B4EB9)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola logu a BIOSu

Napsal: 22 úno 2025 15:42
od Rudy
Zdravím!
Těžko říci, co to způsobilo. Z logu nepoznám, jestli aktualizace biosu proběhla korektně. FRST řeší systém Windows a nikoli bios. Zkontrolovat log ale mohu. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
FirewallRules: [{0AAA8A88-2224-4FC8-A7EA-DC0B2A9D4BB8}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File¨

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Že se problém nebude opakovat však nemohu zaručit.

Re: Kontrola logu a BIOSu

Napsal: 23 úno 2025 10:00
od danek
Tak bohužel to nešlo.

Po spuštění FRST se počítač vypnul a zablokoval.

Hlásilo mi to "Your device ran into problems and needs restart", to proběhlo dvakrát. Pak to hlásilo "Oprava systému", "Probíhá příprava automatické opravy", "Probíhá diagnostika počítače", "Automatická oprava", "Systém Windows se nedal zavést správně", "Pokus o obnovu systému", "Pokusy o opravy"

Pak jsme nějak vybral z nabídky obnovit systém a hlásilo to úspěšná obnova systému do stavu včera v 14 h.

Pak po restartu zase "Your device ran into problems and needs to restart", "Probíhá diagnostika počítače", "Automatická oprava", "Počítač se nespustil správně" a dal jsem "Upřesnit možnosti"

Potom jsem zkoušel různé možnosti z menu- oprava spouštění systému, nastavení spouštění- tam se mi podařilo spustit počítač v Safe módu bez internetu, ale nic z toho. Nepomohlo odinstalovat aktualizace.

Nakonec jsem vybral volbu Vrátit do továrního nastavení a to pomohlo. Naštěstí jsem nepřišel o data.

Re: Kontrola logu a BIOSu

Napsal: 23 úno 2025 11:23
od Rudy
Nějak nechápu, proč šel PC nastartovat po návratu do tov nastavení, když ho shodil FRST. Koukněte do C:\windows\minidump a pokud tam budou nějaké soubory, zabalte je do raru a přiložte k vašemu příštímu postu.

Re: Kontrola logu a BIOSu

Napsal: 23 úno 2025 23:00
od danek
Dobrý den,

No je to každopádně divné.

Ten adresář Minidump v adresáři C:\Windows nevidím.

Re: Kontrola logu a BIOSu

Napsal: 24 úno 2025 09:06
od Rudy
danek píše: 23 úno 2025 23:00 Dobrý den,

No je to každopádně divné.

Ten adresář Minidump v adresáři C:\Windows nevidím.
Nevím, zda ho Win11 neskrývá. V každém případě by bylo dobré to zjistit. V něm se ukrývají všechny záznamy o chybách systému, jinak budeme muset provést všechny testy hardwaru.

Re: Kontrola logu a BIOSu

Napsal: 25 úno 2025 22:30
od danek
Dal jsem zobrazit skryté soubory a neobjevil se. Zkusil jsem dát do vyhledávání a nenašlo nic.

Re: Kontrola logu a BIOSu

Napsal: 25 úno 2025 22:53
od Rudy
Asi systém nemel důvod ho vytvořit. Do přík řádku napoište:
sfc /scannow
a odentrujte.

Proběhne konjtrola a případné nhrazení systémových sourů. Pak PC restarujte a vyzkoušejte.

Re: Kontrola logu a BIOSu

Napsal: 26 úno 2025 21:34
od danek
Tak jsem to zkusil a objevila se mi hláška: "You must be an administrator running a console session in order to use the sfc utility".

Re: Kontrola logu a BIOSu

Napsal: 26 úno 2025 22:17
od JaRon
jednorazovo zaskocim:
cmd musis spustit ako spravca - prikazovy riadok

Re: Kontrola logu a BIOSu

Napsal: 27 úno 2025 00:00
od danek
OK, tak už to šlo. Napsalo to Windows Resource Protection did not find any integrity violations.

Re: Kontrola logu a BIOSu

Napsal: 27 úno 2025 20:04
od JaRon
Vloz aktualne logy frst a popis sucasne problemy PC

Re: Kontrola logu a BIOSu

Napsal: 21 bře 2025 17:10
od danek
Bohužel se to teď vrátilo, zase se nemůžu ani přihlásit do počítače. Jedné co jsem udělal bylo zadání kódu antiviru Avast a restart počítače. Udělal jsem pak vrácení do bodu obnovy systému. Pak jsem se přihlásil, objevila se hláška, že McAfee free verze brzy vyprší. Nevim, proč se to pořád objevuje j McAffee nechci, chci Avast, ale pořád se někde objevují hlášky. A teď jsem udělal ten scan.

Posílám zde výsledky:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-03-2025
Ran by Dan (administrator) on JILM (HP HP Pavilion x360 Convertible 14-dh0xxx) (21-03-2025 16:53:50)
Running from C:\Users\danie\Downloads\FRST64.exe
Loaded Profiles: Dan & Dan2
Platform: Microsoft Windows 11 Home Version 24H2 26100.3476 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.72\msedgewebview2.exe <6>
(C:\Windows\ImmersiveControlPanel\SystemSettings.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastNM.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\BridgeCommunication.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(explorer.exe ->) (ELAN Microelectronics Corporation -> ELAN) [File not signed] C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_ece153ca769ec179\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(sihost.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Browser\Application\AvastBrowser.exe <49>
(svchost.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Win32WebViewHost_cw5n1h2txyewy\Win32WebViewHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [238280 2019-04-22] (ELAN Microelectronics Corporation -> ELAN) [File not signed]
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [545288 2025-03-13] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291128 2025-03-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1004\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [545288 2025-03-13] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [545288 2025-03-13] (HP Inc. -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.118\Installer\chrmstp.exe [2025-03-21] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\133.0.28658.143\Installer\chrmstp.exe [2025-03-14] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
BootExecute: autocheck autochk * icarus_rvrt.exe

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {43E63D08-F9DA-4DF2-8B64-013ED9878107} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3737432 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {F64F4EC5-750F-4931-A2BF-DE0B1B927C80} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3737432 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {40F70906-C3C0-4F25-9103-DE170D40E372} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8543016 2025-02-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0F01994E-9A53-477B-A95F-795CDA84D89E} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286696 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {4EDADB33-5641-4EE9-AF8B-5A0F9FD2AC47} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {11625D44-CBF6-4F11-90D2-8F74356C9852} - System32\Tasks\AvastBrowserProtectS-1-5-21-93754314-3111490570-4120607304-1001 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-01-07] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0E533E37-3D0D-48C0-8615-E9F0FD394C86} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {99A2B257-CA64-4364-8212-2FD5487E010B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {92081EBA-9733-49DD-99F1-4332BDBD8EE2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{D0183D99-0949-4FAC-A57A-A4E715D265FB} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {E77BF225-8545-4EA0-B1F3-CF4B595A93CA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1003528 2025-02-18] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {CE91E644-D588-4A35-B919-EFF9295F0526} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [102400 2025-02-23] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {2A291F69-D410-497E-9C65-7AE04CEB6B5B} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {CF881BDB-D67B-42B1-B95D-B0E68E47926F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906984 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0EC0C37-CB89-43FF-9EB9-88452C843A73} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906984 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {6247AA85-5AE4-47D8-8097-F8B191D3B60D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2211504 2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EBFF922-6A98-4AD1-962D-E0EF0DF1CEE2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2211504 2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7FCDE46-F8B6-4BB7-AA32-DFF92C6B74DC} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {2A7D76D2-3AEA-4B85-92B3-1A720831B1B5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {85B98215-CF21-4EDE-9B18-3F2B63CEB87D} - System32\Tasks\OneDrive Startup Task-S-1-5-21-93754314-3111490570-4120607304-1001 => C:\Users\danie\AppData\Local\Microsoft\OneDrive\25.031.0217.0003\OneDriveLauncher.exe [669528 2025-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {919ECE32-6FEB-40BD-BDED-E37BAACB9776} - System32\Tasks\RtkAudUService64_BG => C:\windows\system32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{319facf1-c9ca-44a0-b2f9-b15813f65d0a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{99d8e2a9-72fc-4f94-b6c0-bb6019a7a8e6}: [DhcpNameServer] 192.168.11.254 79.98.72.27 79.98.72.2

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-21]
Edge Extension: (Dokumenty Google offline) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-22]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-02-22]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)

Chrome:
=======
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default [2025-03-21]
CHR Notifications: Default -> hxxps://mail.google.com
CHR Extension: (McAfee® WebAdvisor) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2025-02-23]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-22]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-02-22]hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7498024 2025-02-23] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [805672 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2428200 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1257256 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\133.0.28658.143\elevation_service.exe [2206032 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\AppHelperCap.exe [889976 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\DiagsCap.exe [888928 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\NetworkCap.exe [885344 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe [889464 2025-02-23] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [943216 2025-03-21] (McAfee, LLC -> McAfee, LLC)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20568 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [246880 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [384096 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296032 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84576 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
S1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [37984 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [278616 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553568 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [98912 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69728 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [959064 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1427552 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [206904 2025-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [389720 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1049936 2022-02-24] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [76832 2022-09-30] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [51192 2025-03-15] (OpenVPN Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2023-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2025-02-23] (Microsoft Windows -> Microsoft Corporation)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2020-08-21] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U3 {5e4a39a0-56da-25a0-9ada-f5010b1b90fd}; C:\WINDOWS\TEMP\{5e4a39a0-56da-25a0-9ada-f5010b1b90fd}.sys [246880 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) <==== ATTENTION
U3 aspnet_state; no ImagePath
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\wps\1.27.184.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-21 16:53 - 2025-03-21 16:54 - 000026984 _____ C:\Users\danie\Downloads\FRST.txt
2025-03-21 16:53 - 2025-03-21 16:53 - 002404352 _____ (Farbar) C:\Users\danie\Downloads\FRST64.exe
2025-03-21 16:53 - 2025-03-21 16:53 - 002404352 _____ (Farbar) C:\Users\danie\Downloads\FRST64 (1).exe
2025-03-21 16:45 - 2025-03-21 16:45 - 000713378 _____ C:\WINDOWS\system32\perfh005.dat
2025-03-21 16:45 - 2025-03-21 16:45 - 000152540 _____ C:\WINDOWS\system32\perfc005.dat
2025-03-21 16:40 - 2025-03-21 16:40 - 000000000 ____D C:\Users\danie\AppData\Local\CrashDumps
2025-03-21 16:40 - 2025-03-21 16:39 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\asw2662d9ff2f3c5e51.tmp
2025-03-21 16:38 - 2025-03-21 16:39 - 000000000 ____D C:\WINDOWS\Minidump
2025-03-15 15:26 - 2025-03-15 15:26 - 000051192 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2025-03-14 15:16 - 2025-03-14 15:16 - 000001181 _____ C:\Users\danie\Downloads\Flight_from_Brussels,_BE_(BRU)_to_Prague,_CZ_(PRG).ics
2025-03-14 15:16 - 2025-03-14 15:16 - 000001179 _____ C:\Users\danie\Downloads\Flight_from_Prague,_CZ_(PRG)_to_Brussels,_BE_(BRU) (1).ics
2025-03-14 15:16 - 2025-03-14 15:16 - 000001139 _____ C:\Users\danie\Downloads\Hotel_check_in_reminder_Thon_Hotel_Brussels_City_Centre (1).ics
2025-03-14 14:52 - 2025-03-14 14:52 - 001040301 _____ C:\Users\danie\Downloads\reservation_confirmation_eHotel-646882730_Mr.DANIELMARCIK_SheljaDwivedi_JurajHaring_MariaOmastova.pdf
2025-03-14 00:38 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\Windows.SystemToast.PresenceSensing.OnlookerDetection
2025-03-13 18:10 - 2025-03-21 09:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-13 18:04 - 2025-03-13 18:04 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-03-13 18:04 - 2025-03-13 18:04 - 000070484 _____ C:\WINDOWS\system32\ctac.json
2025-03-13 17:55 - 2025-03-13 17:55 - 000001179 _____ C:\Users\danie\Downloads\Flight_from_Prague,_CZ_(PRG)_to_Brussels,_BE_(BRU).ics
2025-03-13 17:55 - 2025-03-13 17:55 - 000001139 _____ C:\Users\danie\Downloads\Hotel_check_in_reminder_Thon_Hotel_Brussels_City_Centre.ics
2025-03-02 18:42 - 2025-03-02 18:42 - 000188901 _____ C:\Users\danie\Downloads\ΑΠΕ_B_7944687.PDF
2025-03-02 18:41 - 2025-03-02 18:41 - 000303562 _____ C:\Users\danie\Downloads\AEGEAN_AIRLINES_SA_E_ticket_Confirmation.pdf
2025-02-28 23:37 - 2025-02-28 23:37 - 000010967 _____ C:\Users\danie\Desktop\Skipasy Flachau.xlsx
2025-02-25 22:15 - 2025-03-09 17:50 - 000046643 _____ C:\Users\danie\Desktop\Sešit1.xlsx
2025-02-23 12:55 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\InboxApps
2025-02-23 10:22 - 2025-02-23 10:22 - 000000000 ____D C:\Users\danie\AppData\Local\McAfee
2025-02-23 10:16 - 2025-02-23 10:16 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json
2025-02-23 10:16 - 2025-02-23 10:16 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-02-23 10:15 - 2025-02-23 10:15 - 000027617 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-02-23 10:15 - 2025-02-23 10:15 - 000027617 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-02-23 10:06 - 2025-02-23 10:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-02-23 09:31 - 2025-02-23 09:31 - 000000000 ____D C:\Users\danie\AppData\Roaming\Avast Software
2025-02-23 09:31 - 2025-02-23 09:31 - 000000000 ____D C:\Users\danie\AppData\Local\CEF
2025-02-23 09:30 - 2025-03-14 14:55 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-02-23 09:30 - 2025-03-14 14:55 - 000002416 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-02-23 09:30 - 2025-02-23 09:47 - 000000000 ____D C:\Users\danie\AppData\Local\AVAST Software
2025-02-23 09:30 - 2025-02-23 09:30 - 000003844 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2025-02-23 09:30 - 2025-02-23 09:30 - 000003756 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-93754314-3111490570-4120607304-1001
2025-02-23 09:30 - 2025-02-23 09:30 - 000003260 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2025-02-23 09:29 - 2025-02-23 09:29 - 000003510 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2025-02-23 09:29 - 2025-02-23 09:29 - 000003386 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2025-02-23 09:29 - 2025-02-23 09:29 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2025-02-23 09:28 - 2025-03-16 15:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-02-23 09:28 - 2025-02-23 09:28 - 000002209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2025-02-23 09:28 - 2025-02-23 09:28 - 000002197 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2025-02-23 09:28 - 2025-02-23 09:27 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-02-23 09:27 - 2025-03-21 16:39 - 000000000 ____D C:\ProgramData\Avast Software
2025-02-23 09:27 - 2025-03-21 16:28 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2025-02-23 09:27 - 2025-03-21 16:25 - 000000000 ____D C:\Program Files\Avast Software
2025-02-23 09:27 - 2025-02-23 09:27 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe
2025-02-23 09:26 - 2025-03-09 17:48 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Word
2025-02-23 09:26 - 2025-02-23 11:52 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Office
2025-02-23 09:26 - 2025-02-23 11:22 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\UProof
2025-02-23 09:26 - 2025-02-23 09:26 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Proof
2025-02-22 22:55 - 2025-03-09 17:49 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Excel
2025-02-22 22:24 - 2025-02-22 22:24 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000000000 ____D C:\Users\danie\AppData\Roaming\Skype
2025-02-22 22:24 - 2025-02-22 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2025-02-22 22:20 - 2025-02-22 22:20 - 000000000 ____D C:\Users\danie\AppData\Local\Comms
2025-02-22 22:06 - 2025-03-21 08:52 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-02-22 22:06 - 2025-03-21 08:52 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-02-22 22:06 - 2025-02-22 22:06 - 000000000 ____D C:\Users\danie\AppData\Local\Google
2025-02-22 22:06 - 2025-02-22 22:06 - 000000000 ____D C:\Program Files\Google
2025-02-22 22:05 - 2025-03-02 18:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2025-02-22 22:05 - 2025-02-22 22:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-02-22 22:05 - 2025-02-22 22:05 - 000000000 ____D C:\Program Files (x86)\Google
2025-02-22 22:04 - 2025-03-21 16:44 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache
2025-02-22 22:02 - 2025-02-22 22:02 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\AddIns
2025-02-22 21:11 - 2025-03-21 08:53 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-02-22 21:11 - 2025-03-21 08:53 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-02-22 21:11 - 2025-03-21 08:53 - 000003350 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-02-22 21:11 - 2025-03-21 08:53 - 000002384 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-02-22 21:11 - 2025-02-22 21:11 - 000000000 ____D C:\Users\Default\AppData\Local\HP
2025-02-22 21:11 - 2025-02-22 21:11 - 000000000 ____D C:\Users\danie\AppData\Local\ToastNotificationManagerCompat
2025-02-22 21:10 - 2025-03-21 16:45 - 001712860 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-02-22 21:10 - 2025-02-23 11:52 - 000000000 ____D C:\Users\danie\AppData\Local\PlaceholderTileLogoFolder
2025-02-22 21:10 - 2025-02-22 22:05 - 000000000 ____D C:\Users\danie\AppData\Local\HP
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Roaming\HP
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Local\Tray2Agent
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Local\FilterInfo
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Local\CaliTray2Agent
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Local\Agent2Tray
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\Users\danie\AppData\Local\Agent2CaliTray
2025-02-22 21:10 - 2025-02-22 21:10 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-02-22 21:09 - 2025-02-22 22:05 - 000000000 ____D C:\Users\danie\AppData\Local\Publishers
2025-02-22 21:09 - 2025-02-22 21:09 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Network
2025-02-22 21:08 - 2025-02-22 21:08 - 000000020 ___SH C:\Users\danie\ntuser.ini
2025-02-22 21:08 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Roaming\Synaptics
2025-02-22 21:08 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Roaming\Adobe
2025-02-22 21:08 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Local\VirtualStore
2025-02-22 21:08 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Local\ConnectedDevicesPlatform
2025-02-22 21:08 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Local\Apps\2.0
2025-02-22 21:04 - 2025-03-21 16:39 - 000001168 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-02-22 21:04 - 2025-03-21 16:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-02-22 21:04 - 2025-03-16 15:46 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{842E0B4C-21D9-4C0C-880F-7828A4E1434A}
2025-02-22 21:04 - 2025-03-16 15:46 - 000003420 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{31D51CB3-8EFA-4E9F-8F74-7124BD2FC6DD}
2025-02-22 21:04 - 2025-03-16 15:46 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2550304826-3164911718-1523452680-500
2025-02-22 21:04 - 2025-03-16 15:46 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2025-02-22 21:04 - 2025-03-16 15:46 - 000002310 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2025-02-22 21:04 - 2025-02-22 21:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\Users\Default User
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\Users\All Users
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\ProgramData\Šablony
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\ProgramData\Plocha
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\ProgramData\Dokumenty
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 _SHDL C:\ProgramData\Data aplikací
2025-02-22 21:04 - 2025-02-22 21:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2025-02-22 21:04 - 2019-05-14 00:43 - 000002848 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-194623788-732485397-4118678841-500
2025-02-22 21:04 - 2019-04-15 16:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2025-02-22 21:03 - 2025-02-22 21:03 - 000007616 _____ C:\Users\Dan2\Desktop\Odebrané aplikace.html
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\SystemCertificates
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\IME
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Crypto
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\SystemCertificates
2025-02-22 21:03 - 2025-02-22 21:03 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Crypto
2025-02-22 21:02 - 2025-03-21 16:49 - 000000000 ____D C:\Users\danie\AppData\Local\Packages
2025-02-22 21:02 - 2025-03-21 16:39 - 000000000 ____D C:\Users\danie
2025-02-22 21:02 - 2025-03-21 16:28 - 000000000 ____D C:\Users\defaultuser100000
2025-02-22 21:02 - 2025-03-21 16:28 - 000000000 ____D C:\Users\Dan2
2025-02-22 21:02 - 2025-02-25 22:29 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Spelling
2025-02-22 21:02 - 2025-02-22 21:08 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows
2025-02-22 21:02 - 2025-02-22 21:03 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows
2025-02-22 21:02 - 2025-02-22 21:03 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Windows
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Šablony
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Soubory cookie
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Poslední
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Okolní tiskárny
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Okolní síť
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Nabídka Start
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Dokumenty
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Obrázky
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Hudba
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Filmy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Šablony
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Soubory cookie
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Poslední
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Okolní tiskárny
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Okolní síť
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Nabídka Start
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Dokumenty
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Documents\Obrázky
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Documents\Hudba
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Documents\Filmy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\danie\AppData\Local\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Šablony
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Soubory cookie
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Poslední
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Okolní tiskárny
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Okolní síť
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Nabídka Start
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Dokumenty
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Documents\Obrázky
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Documents\Hudba
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Documents\Filmy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-02-22 21:02 - 2025-02-22 21:02 - 000000000 _SHDL C:\Users\Dan2\AppData\Local\Data aplikací
2025-02-22 21:02 - 2025-02-22 21:01 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages
2025-02-22 21:02 - 2025-02-22 21:01 - 000000000 ____D C:\Users\Dan2\AppData\Local\Packages
2025-02-22 21:02 - 2025-02-22 20:45 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling
2025-02-22 21:02 - 2025-02-22 20:45 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Spelling
2025-02-22 20:55 - 2025-03-02 20:24 - 000000000 ____D C:\ProgramData\HP
2025-02-22 20:55 - 2025-02-22 21:00 - 000000000 ____D C:\ProgramData\Validity
2025-02-22 20:55 - 2025-02-22 20:55 - 000000027 _____ C:\WINDOWS\system32\Drivers\RtkR0Log.dat
2025-02-22 20:55 - 2025-02-22 20:55 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2025-02-22 20:54 - 2025-03-21 16:38 - 000012288 ___SH C:\DumpStack.log.tmp
2025-02-22 20:54 - 2025-03-21 16:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-22 20:54 - 2025-03-16 11:59 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-02-22 20:54 - 2025-03-16 11:59 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-02-22 20:54 - 2025-03-14 00:39 - 000592720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-02-22 20:54 - 2025-02-22 21:08 - 000000000 ____D C:\ProgramData\Intel
2025-02-22 20:54 - 2025-02-22 20:54 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2025-02-22 20:54 - 2025-02-22 20:54 - 000000000 ____D C:\ProgramData\Realtek
2025-02-22 20:54 - 2019-03-13 17:37 - 000022030 _____ C:\WINDOWS\system32\Drivers\Gen3pKey.dat
2025-02-22 20:54 - 2018-10-18 16:36 - 000017232 _____ C:\WINDOWS\system32\Drivers\RTSPKPT1.dat
2025-02-22 20:54 - 2018-10-18 16:36 - 000017232 _____ C:\WINDOWS\system32\Drivers\RTSPKPT.dat
2025-02-22 20:53 - 2025-02-22 21:11 - 000000000 ____D C:\Program Files\HP
2025-02-22 20:53 - 2025-02-22 21:08 - 000000000 ____D C:\WINDOWS\Panther
2025-02-22 20:53 - 2025-02-22 21:08 - 000000000 ____D C:\Windows.old
2025-02-22 20:52 - 2025-02-22 20:52 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2025-02-22 20:50 - 2025-02-22 21:00 - 000000000 ____D C:\WINDOWS\system32\Intel
2025-02-22 20:50 - 2025-02-22 20:51 - 000000000 ____D C:\WINDOWS\system32\cAVS
2025-02-22 20:50 - 2025-02-22 20:50 - 000000000 ____D C:\WINDOWS\Firmware
2025-02-22 20:48 - 2025-02-22 20:48 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2025-02-22 20:47 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-02-22 20:47 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-02-22 20:47 - 2025-02-22 21:08 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2025-02-22 20:47 - 2025-02-22 20:53 - 000000000 ____D C:\WINDOWS\Setup
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\addins
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\ProgramData\ssh
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\Program Files\Reference Assemblies
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\Program Files\MSBuild
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2025-02-22 20:47 - 2025-02-22 20:47 - 000000000 ____D C:\Program Files (x86)\MSBuild
2025-02-22 20:46 - 2025-02-22 21:00 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2025-02-22 20:46 - 2025-02-22 21:00 - 000000000 ____D C:\WINDOWS\system32\WCN
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\system32\winrm
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\system32\slmgr
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\system32\cs
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\system32\0409
2025-02-22 20:46 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\DigitalLocker
2025-02-22 20:45 - 2025-03-21 16:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-22 20:45 - 2025-03-21 16:49 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-02-22 20:45 - 2025-03-21 16:49 - 000000000 ___HD C:\Program Files\WindowsApps
2025-02-22 20:45 - 2025-03-21 16:49 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-22 20:45 - 2025-03-21 16:49 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-22 20:45 - 2025-03-21 16:39 - 000000000 ____D C:\WINDOWS\ServiceState
2025-02-22 20:45 - 2025-03-21 16:38 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2025-02-22 20:45 - 2025-03-21 16:28 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-02-22 20:45 - 2025-03-21 16:25 - 000000000 ____D C:\WINDOWS\registration
2025-02-22 20:45 - 2025-03-14 08:00 - 000000000 ____D C:\ProgramData\USOPrivate
2025-02-22 20:45 - 2025-03-14 00:39 - 000000000 ___RD C:\Program Files (x86)
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\UUS
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\SystemResources
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\Provisioning
2025-02-22 20:45 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-02-22 20:45 - 2025-03-13 17:37 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\WUModels
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2025-02-22 20:45 - 2025-02-23 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\SystemApps
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\setup
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\Com
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\schemas
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\IME
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\Program Files\Common Files\System
2025-02-22 20:45 - 2025-02-23 12:55 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-02-22 20:45 - 2025-02-22 22:32 - 000000000 ____D C:\WINDOWS\appcompat
2025-02-22 20:45 - 2025-02-22 21:08 - 000000000 ____D C:\WINDOWS\system32\spool
2025-02-22 20:45 - 2025-02-22 21:04 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-02-22 20:45 - 2025-02-22 21:04 - 000000000 ____D C:\Program Files\Windows NT
2025-02-22 20:45 - 2025-02-22 21:01 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2025-02-22 20:45 - 2025-02-22 21:01 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-02-22 20:45 - 2025-02-22 21:00 - 000000000 ____D C:\WINDOWS\WaaS
2025-02-22 20:45 - 2025-02-22 21:00 - 000000000 ____D C:\WINDOWS\OCR
2025-02-22 20:45 - 2025-02-22 20:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2025-02-22 20:45 - 2025-02-22 20:53 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-02-22 20:45 - 2025-02-22 20:53 - 000000000 __RHD C:\Users\Public\Libraries
2025-02-22 20:45 - 2025-02-22 20:53 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-02-22 20:45 - 2025-02-22 20:53 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-02-22 20:45 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2025-02-22 20:45 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\system32\MUI
2025-02-22 20:45 - 2025-02-22 20:47 - 000000000 ____D C:\WINDOWS\Globalization
2025-02-22 20:45 - 2025-02-22 20:46 - 000000000 ___SD C:\WINDOWS\system32\dsc
2025-02-22 20:45 - 2025-02-22 20:46 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-02-22 20:45 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-02-22 20:45 - 2025-02-22 20:46 - 000000000 ____D C:\WINDOWS\Help
2025-02-22 20:45 - 2025-02-22 20:46 - 000000000 ____D C:\Program Files (x86)\Windows NT
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 __SHD C:\Program Files\Windows Sidebar
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 __RSD C:\WINDOWS\Media
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\system32\Nui
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\system32\lxss
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Web
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Vss
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\tracing
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\TAPI
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\ShellExperiences
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\winevt
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\ras
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\Pbr
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\IME
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\icsxml
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\ias
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\DriverState
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\downlevel
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\System
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SKB
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\SchCache
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\security
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Resources
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\rescache
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\PLA
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Performance
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\ModemLogs
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\L2Schemas
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\InputMethod
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\IdentityCRL
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Cursors
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\Branding
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Spelling
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\ProgramData\USOShared
2025-02-22 20:45 - 2025-02-22 20:45 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2025-02-22 20:45 - 2025-02-22 20:44 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2025-02-22 20:45 - 2025-02-22 20:44 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2025-02-22 20:45 - 2025-02-22 20:44 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2025-02-22 20:44 - 2025-03-21 16:45 - 000000000 ____D C:\WINDOWS\INF
2025-02-22 20:43 - 2025-03-21 16:28 - 106168320 _____ C:\WINDOWS\system32\config\software
2025-02-22 20:43 - 2025-03-21 16:28 - 090439680 _____ C:\WINDOWS\system32\config\system
2025-02-22 20:43 - 2025-03-14 14:49 - 002359296 _____ C:\WINDOWS\system32\config\default
2025-02-22 20:43 - 2025-03-14 14:49 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-02-22 20:43 - 2025-03-14 14:49 - 000131072 _____ C:\WINDOWS\system32\config\sam
2025-02-22 20:43 - 2025-03-14 14:49 - 000032768 _____ C:\WINDOWS\system32\config\security
2025-02-22 20:43 - 2025-03-14 00:38 - 000000000 ____D C:\WINDOWS\servicing
2025-02-22 20:43 - 2025-02-25 20:45 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2025-02-22 20:43 - 2025-02-22 20:45 - 000000000 ____D C:\WINDOWS\system32\SMI
2025-02-22 20:37 - 2025-02-22 21:03 - 000000000 ___HD C:\$SysReset
2025-02-22 17:52 - 2025-02-22 17:52 - 000001189 _____ C:\Users\danie\Desktop\Fixlog.txt
2025-02-22 17:51 - 2025-02-22 17:52 - 000000293 _____ C:\Users\danie\Desktop\fixlist.txt
2025-02-22 12:24 - 2025-02-22 12:32 - 000027668 _____ C:\Users\danie\Desktop\Addition.txt
2025-02-22 12:21 - 2025-02-22 12:30 - 000064264 _____ C:\Users\danie\Desktop\FRST.txt
2025-02-22 12:20 - 2025-02-22 12:20 - 002403840 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-21 16:54 - 2021-02-09 10:05 - 000000000 ____D C:\FRST
2025-03-21 16:49 - 2019-08-08 23:13 - 000000000 ____D C:\ProgramData\McAfee
2025-03-21 16:49 - 2019-08-08 23:10 - 000000000 ____D C:\ProgramData\Packages
2025-03-21 16:38 - 2022-11-07 23:05 - 000403532 ____N C:\WINDOWS\Minidump\032125-11796-01.dmp
2025-03-21 16:38 - 2019-08-08 23:05 - 000000000 ____D C:\Intel
2025-03-14 00:39 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\McAfee
2025-03-14 00:39 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\Common Files\McAfee
2025-03-06 09:23 - 2019-04-15 16:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-02-22 22:22 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\Microsoft Office
2025-02-22 21:11 - 2019-09-23 20:42 - 000000000 ___RD C:\Users\danie\OneDrive
2025-02-22 21:08 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-02-22 21:03 - 2024-11-17 21:56 - 000007618 _____ C:\Users\danie\Desktop\Odebrané aplikace.html
2025-02-22 21:03 - 2024-11-17 21:56 - 000007210 _____ C:\Users\defaultuser100000\Desktop\Odebrané aplikace.html
2025-02-22 21:03 - 2024-02-03 15:04 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2025-02-22 21:03 - 2022-12-11 23:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2025-02-22 21:03 - 2020-01-16 23:17 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2025-02-22 21:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2025-02-22 21:01 - 2019-08-08 23:12 - 000000000 ____D C:\Users\Default\AppData\Local\Packages
2025-02-22 21:00 - 2019-08-08 23:13 - 000000000 ____D C:\ProgramData\McInstTemp0076191565302393
2025-02-22 21:00 - 2019-08-08 23:10 - 000000000 ____D C:\WINDOWS\HP
2025-02-22 21:00 - 2019-08-08 23:07 - 000000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA%
2025-02-22 21:00 - 2019-08-08 23:06 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-02-22 21:00 - 2019-08-08 23:00 - 000000000 ____D C:\Program Files (x86)\Intel
2025-02-22 21:00 - 2019-08-08 22:59 - 000000000 ____D C:\ProgramData\Package Cache
2025-02-22 21:00 - 2019-08-08 22:58 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2025-02-22 21:00 - 2019-05-14 00:54 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-02-22 21:00 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\Microsoft Office 15
2025-02-22 21:00 - 2019-05-14 00:53 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2025-02-22 21:00 - 2019-05-14 00:53 - 000000000 ___RD C:\Program Files\Online Services
2025-02-22 21:00 - 2019-05-14 00:53 - 000000000 ___RD C:\Program Files (x86)\Online Services
2025-02-22 21:00 - 2019-05-14 00:52 - 000000000 ____D C:\Program Files (x86)\HP
2025-02-22 21:00 - 2019-03-19 07:20 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2025-02-22 21:00 - 2019-03-19 07:20 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2025-02-22 21:00 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Security
2025-02-22 20:59 - 2019-08-08 23:06 - 000000000 ____D C:\Program Files\ELAN
2025-02-22 20:59 - 2019-08-08 23:00 - 000000000 ____D C:\Program Files\Intel
2025-02-22 20:59 - 2019-05-14 00:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-02-22 20:59 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\HPCommRecovery
2025-02-22 20:59 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2025-02-22 20:53 - 2024-01-07 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2025-02-22 20:53 - 2022-11-04 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verbatim
2025-02-22 20:53 - 2022-08-05 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2025-02-22 20:53 - 2022-06-24 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2025-02-22 20:53 - 2020-09-30 23:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-03-2025
Ran by Dan (21-03-2025 16:55:45)
Running from C:\Users\danie\Downloads
Microsoft Windows 11 Home Version 24H2 26100.3476 (X64) (2025-02-22 20:08:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-93754314-3111490570-4120607304-500 - Administrator - Disabled)
Dan (S-1-5-21-93754314-3111490570-4120607304-1001 - Administrator - Enabled) => C:\Users\danie
Dan2 (S-1-5-21-93754314-3111490570-4120607304-1525 - Administrator - Enabled) => C:\Users\Dan2
DefaultAccount (S-1-5-21-93754314-3111490570-4120607304-503 - Limited - Disabled)
Guest (S-1-5-21-93754314-3111490570-4120607304-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-93754314-3111490570-4120607304-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee (Enabled - Up to date) {0BE13B34-492A-21C0-AE43-C1742279CCB6}
FW: McAfee (Enabled) {33DABA11-0345-2098-851C-6841DCAA8BCD}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.1.9816.2473 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 133.0.28658.143 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.25 - ELAN microelectronics Crop.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 134.0.6998.118 - Google LLC)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Intel(R) Chipset Device Software (HKLM\...\{D4DC16D3-5547-4A3B-A9EB-FF9B4C2EA4A1}) (Version: 10.1.17969.8134 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{4625C928-49BB-44DC-92E3-B9EC0972C72D}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0854C811-6DAD-441D-AB36-2F73631A04A1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{7715518B-08D0-4754-BB81-FE4FC61DFDF7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{4C230277-5515-4B51-B9E6-97880684B10C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{FEB772C1-919E-4145-9691-AFFAC915496F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 134.0.3124.72 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.72 - Microsoft Corporation) Hidden
Microsoft Office 2016 pro profesionály - cs-cz (HKLM\...\ProfessionalRetail - cs-cz) (Version: 16.0.9029.2167 - Microsoft Corporation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.9029.2167 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.9029.2167 - Microsoft Corporation)
Microsoft Office 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.9029.2167 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\OneDriveSetup.exe) (Version: 25.031.0217.0003 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.31301 - Microsoft)
Microsoft VC++ redistributables repacked. (HKLM\...\{2FAF2A80-5906-467E-8AD2-B83C94383600}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F85F7FF0-5DFF-4BC0-9045-C9573D1BC11F}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.1013 - McAfee, LLC)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2025-03-21] (Amazon.com)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2025-03-21] (INTEL CORP) [Startup Task]
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2025-03-21] (Priceline Partner Network)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.30.0_x64__xbfy0k16fey96 [2025-03-21] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.3.176.0_x64__dt26b99r8h8gj [2025-03-21] (Realtek Semiconductor Corp)
HP CoolSense -> C:\Program Files\WindowsApps\ad2f1837.hpcoolsense_1.0.6.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_158.1.1131.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.42.15.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6 [2025-03-21] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-03-21] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1041.0_x64__8j3eq9eme6ctt [2025-03-21] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.42.0_x64__w1wdnht996qgy [2025-03-21] (LinkedIn) [Startup Task]
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.5.25.0_x64__kx24dqmazqk8j [2025-03-21] (Random Salad Games LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\danie\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.31301\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{7d043d4e-4259-f459-3630-7b434fd7752c}\localserver32 -> C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe (HP Inc. -> HP Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-02-23] (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\danie\anaconda3\Scripts\activate.bat C:\Users\danie\anaconda3

==================== Loaded Modules (Whitelisted) =============

2025-02-23 22:30 - 2025-02-23 22:30 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\55ef49b5cec8b608b453b134f0ef0a17\Interop.IWshRuntimeLibrary.ni.dll
2025-03-14 15:00 - 2025-03-14 15:00 - 000869376 _____ (.NET Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.T417b639d#\4fe01a8331af92615afb668364085ff4\Microsoft.Toolkit.Uwp.Notifications.ni.dll
2025-02-23 22:29 - 2025-02-23 22:29 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\08fbcafb3f9b61f85bdad62614abe561\Hardcodet.Wpf.TaskbarNotification.ni.dll
2025-03-14 15:00 - 2025-03-14 15:00 - 000440320 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LauncherSDK\e932983a03a3c853d80ce56c4956c01f\LauncherSDK.ni.dll
2025-03-14 15:00 - 2025-03-14 15:00 - 000038400 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Logging\9cb86ea041a578c1a5346faadbb2bf45\Logging.ni.dll
2025-03-14 15:00 - 2025-03-14 15:00 - 000153600 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\RpcClient\5894299124b98e226d55e1b61792f0d5\RpcClient.ni.dll
2025-03-14 15:00 - 2025-03-14 15:00 - 000125440 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WMISDK\abca71b16b0953a1ee1983539e6d48df\WMISDK.ni.dll
2025-02-23 22:30 - 2025-02-23 22:30 - 001591296 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\227dafcf5a76e26835f3cc679e30d684\NAudio.ni.dll
2025-02-23 22:30 - 2025-02-23 22:30 - 003128832 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\ffefdae86ace21b00f728df2aee34d53\Newtonsoft.Json.ni.dll
2025-02-22 21:22 - 2025-02-22 21:22 - 003884544 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\ee10bc4e78e9ccd4dd117ff08dbaee77\Newtonsoft.Json.ni.dll
2025-02-23 22:29 - 2025-02-23 22:29 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\60583a430dea5fdc6fcb7f78cf5cc7e2\log4net.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2025-02-18] (HP Inc. -> HP Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2025-02-18] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-02-22] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2025-03-21 16:47 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\Desktop\202502\Flachau\13\IMG_4180.JPEG
HKU\S-1-5-21-93754314-3111490570-4120607304-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Realtek RTL8822BE 802.11ac PCIe Adapter -> rtwlane.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{90324AAD-4385-4C0F-9AA3-B0507C398349}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{AD48B571-03BF-4841-9B11-468A63F366CA}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{0AAA8A88-2224-4FC8-A7EA-DC0B2A9D4BB8}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File
FirewallRules: [{AC6141D9-6E27-45A3-8DE7-76556F9111A5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5C69603-6DE8-4443-BD98-F0553BEA9C36}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{FB1E8747-DE1E-4635-AED7-E68F2E779B5D}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5D2CC0B1-217A-454B-9B58-891DB69D7889}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\133.0.3065.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB0FFD32-FFDB-4433-81B5-C1C098288401}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{34DFBD35-D909-4D1B-8DA5-69931509B21C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B5C031C-D1AB-44C8-AA9A-B98F582D2356}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1123D68E-AE79-4DCB-B356-11230D4A9756}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2BA71F4F-71C4-4E49-9FA6-D969077553BB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F32795B7-CB41-43C6-A23B-47D4C3A4E7B9}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{49C42A19-B30B-4798-9D84-A3FE257D2B07}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{7A701953-2345-457E-B2BE-0A59B039EAC9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7ECD7383-0BD6-4F76-BB5C-C608EA8B28E5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.72\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

21-03-2025 08:59:18 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (03/21/2025 04:49:35 PM) (Source: Windows App Runtime) (EventID: 22) (User: )
Description: Event-ID 22

Error: (03/21/2025 04:40:25 PM) (Source: Application Error) (EventID: 1000) (User: JILM)
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.26100.1, časové razítko: 0x5bc61463
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.26100.3323, časové razítko: 0xe9612d67
Kód výjimky: 0xc000027b
Posun chyby: 0x0000000000074c13
ID chybujícího procesu: 0x300c
Čas spuštění chybující aplikace: 0x1db9a778da82145
Cesta k chybující aplikaci: C:\WINDOWS\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID sestavy: eb5e17df-779b-4e16-8e54-5e96fb07b3cb
Celý název chybujícího balíčku: AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6
ID chybující aplikace relativní vzhledem k balíčku: AD2F1837.HPSystemEventUtility

Error: (03/21/2025 04:39:17 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: OfficeClickToRun.exe, verze: 16.0.18526.20144, časové razítko: 0x67c312cf
Název chybujícího modulu: repoman.dll, verze: 16.0.18526.20044, časové razítko: 0x67a439eb
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000fd68d
ID chybujícího procesu: 0x1570
Čas spuštění chybující aplikace: 0x1db9a77625a510e
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.18526.20144\OfficeClickToRun.exe
Cesta k chybujícímu modulu: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.18526.20144\repoman.dll
ID sestavy: 07e6805c-a67d-47ac-a6b2-a6e65dbd695b
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (03/21/2025 04:39:12 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JILM$ přes https://INTC-KeyId-17a00575d05e58e38812 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(16ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (03/21/2025 04:39:02 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5180,R,98,0) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU00638.log došlo k chybě -1811 (0xfffff8ed).

Error: (03/15/2025 03:20:28 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Zpracování události PowerEvent se nezdařilo. Chyba, ke které došlo: System.IO.IOException: Proces nemůže přistupovat k souboru C:\Windows\Temp\signtool.exe, protože soubor je využíván jiným procesem.
v System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
v System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
v System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
v System.IO.FileStream..ctor(String path, FileMode mode)
v _HPCommRecovery.Tools.Signtool.ExtractSignTool()
v _HPCommRecovery.Tools.Signtool.Verify(String arg)
v _HPCommRecovery.HPAHAgent.CallAgent()
v _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
v _HPCommRecovery.HPAHLogger.NewSession()
v _HPCommRecovery.HPCommRecove....

Error: (03/14/2025 05:44:08 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: OfficeClickToRun.exe, verze: 16.0.18526.20144, časové razítko: 0x67c312cf
Název chybujícího modulu: repoman.dll, verze: 16.0.18526.20044, časové razítko: 0x67a439eb
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000fd68d
ID chybujícího procesu: 0x43c4
Čas spuštění chybující aplikace: 0x1db95004b3abcc2
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.18526.20144\OfficeClickToRun.exe
Cesta k chybujícímu modulu: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\Updates\16.0.18526.20144\repoman.dll
ID sestavy: 23935673-aeb7-4215-8900-59504b8e6213
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (03/14/2025 02:48:04 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JILM$ přes https://INTC-KeyId-17a00575d05e58e38812 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(63ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)


System errors:
=============
Error: (03/21/2025 04:38:56 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x000000ef (0xffffe60c86db0040, 0x0000000000000000, 0xffffe60c86db0040, 0x0000000000000000)C:\WINDOWS\Minidump\032125-11796-01.dmp2d665157-83fc-4297-8060-e61a6e95b915

Error: (03/21/2025 04:38:50 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.

Error: (03/21/2025 04:38:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:01:30, ‎16.‎03.‎2025) bylo neočekávané.

Error: (03/21/2025 04:13:42 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.

Error: (03/16/2025 12:41:36 PM) (Source: Application Popup) (EventID: 549) (User: )
Description: usbprintfailed IRP_MN_QUERY_ID-BusQueryDeviceID

Error: (03/14/2025 03:12:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (03/14/2025 02:48:51 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/14/2025 02:48:03 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.


Windows Defender:
================Event[0]

Date: 2025-03-21 16:39:10
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: Systém nemůže nalézt uvedenou cestu.
Security intelligence Version: 0.0.0.0;0.0.0.0
Engine Version: 0.0.0.0

CodeIntegrity:
===============
Date: 2025-03-21 16:50:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2025-03-21 16:50:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.25 03/27/2024
Motherboard: HP 85C4
Processor: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz
Percentage of memory in use: 81%
Total physical RAM: 8002.3 MB
Available physical RAM: 1449.41 MB
Total Virtual: 9922.3 MB
Available Virtual: 2445.63 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.15 GB) (Free:72.34 GB) (Model: SK hynix BC501 HFM256GDJTNG-8310A) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:0.01 GB) (Model: WDC WD10SPZX-60Z10T0) NTFS

\\?\Volume{7069b8fa-8139-4eca-8274-7f4616022b76}\ () (Fixed) (Total:1.05 GB) (Free:0.14 GB) NTFS
\\?\Volume{73ee637a-f6bf-4282-8ec2-3d4bb3c69d1d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0C9B4EB9)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola logu a BIOSu

Napsal: 21 bře 2025 18:10
od Rudy
1. McAffee odinstalujte.
2. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {92081EBA-9733-49DD-99F1-4332BDBD8EE2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{D0183D99-0949-4FAC-A57A-A4E715D265FB} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {C7FCDE46-F8B6-4BB7-AA32-DFF92C6B74DC} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {2A7D76D2-3AEA-4B85-92B3-1A720831B1B5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\asw2662d9ff2f3c5e51.tmp
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
FirewallRules: [{90324AAD-4385-4C0F-9AA3-B0507C398349}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{AD48B571-03BF-4841-9B11-468A63F366CA}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{0AAA8A88-2224-4FC8-A7EA-DC0B2A9D4BB8}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File

EmptyTemp:
End
Uložte do C:\Users\danie\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Kontrola logu a BIOSu

Napsal: 23 bře 2025 14:31
od danek
Nešlo vůbec nic. Pokusil jsem se jenom odinstalovat McAffee a hodilo se to do poruchy. Pak jsem zkoušel obnovu systému, to chvíli fungovalo, ale pak mi hlásil Avast že chce restartovat a zase to šlo do poruchy. Musel jsem nakonec obnovit do továrního nastavení a přeinstalovat Windows. Posílám nový log:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-03-2025
Ran by Dan (administrator) on JILM (HP HP Pavilion x360 Convertible 14-dh0xxx) (23-03-2025 13:27:09)
Running from C:\Users\danie\Desktop\FRST64.exe
Loaded Profiles: Dan
Platform: Microsoft Windows 11 Home Version 24H2 26100.3194 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\Avast\AvLaunch.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe
(C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\PEF\CORE\OobeHook.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(C:\Program Files\WindowsApps\ad2f1837.hpsystemeventutility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpsystemeventutility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Program Files\WindowsApps\msteams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.83\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\BridgeCommunication.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpsystemeventutility_3.1.26.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvLaunch.exe
(explorer.exe ->) (ELAN Microelectronics Corporation -> ELAN) [File not signed] C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\msteams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHeciSvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\McCSPServiceHost.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_18_12\mcapexe.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [238280 2019-04-22] (ELAN Microelectronics Corporation -> ELAN) [File not signed]
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [545288 2025-03-13] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291144 2025-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\danie\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [84783440 2025-03-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\danie\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\RunOnce: [Uninstall 23.081.0416.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\danie\AppData\Local\Microsoft\OneDrive\23.081.0416.0001" [0 2025-03-23] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [545288 2025-03-13] (HP Inc. -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\132.0.28559.198\Installer\chrmstp.exe [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-03-23]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D27E0B57-55B9-43BC-A104-B9B1F6A5F44D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3386248 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {337843E6-6D6C-43A7-A960-CEE59C6A09B0} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3386248 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E447E34C-EE65-4C13-9113-F9D7639023E8} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8543016 2025-02-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {CAB0A6EA-3C07-439E-9585-8A78A066CE71} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286696 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5CED5EE4-698C-4E06-92DC-CE2704AC23EE} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6086440 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {DBBA282F-D603-440D-9361-394F11444462} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3958056 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {10559A87-95E0-4D4A-9893-6B26616AD63B} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8289064 2025-03-03] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {1B2BB202-2E6F-466E-A766-FF4FAEB0DEE3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {1EC430EE-2930-45FC-8C71-026A09A98A35} - System32\Tasks\AvastBrowserProtectS-1-5-21-93754314-3111490570-4120607304-1001 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E4CE6125-E40F-4E7E-8D7C-FEA004C50A5D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {73C112CF-1033-4C21-8A1B-FA1ED356C3D3} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7400076F-B431-46BD-A678-4A0EF1845D97} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1003528 2025-02-18] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {11222608-81D2-438A-BCE8-923E203A9F2F} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [102400 2025-03-23] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {2A291F69-D410-497E-9C65-7AE04CEB6B5B} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {4BF40230-3DF4-437A-B4E0-5D37931C3EAA} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4639280 2018-12-02] (McAfee, Inc. -> McAfee, Inc.)
Task: {4CC223A8-32FC-4211-A7EE-8F0AAAFE2F9F} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4182424 2019-04-09] (McAfee, Inc. -> McAfee, Inc.)
Task: {DCA1AA77-C9A0-4803-B0FE-6B50AFCD9D26} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1023168 2019-03-28] (McAfee, Inc. -> McAfee, Inc.)
Task: {3F242949-9125-4903-8970-3E97978299C1} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1023168 2019-03-28] (McAfee, Inc. -> McAfee, Inc.)
Task: {0DADFA0B-30F1-4331-A915-9AE10161FB21} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [756672 2018-11-13] (McAfee, Inc. -> McAfee, Inc.)
Task: {885090F3-8964-4D03-AB77-463599DA9819} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906984 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {4702CE0C-03DF-4944-9CA6-CDABC4FBA052} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906984 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {A6282AE9-3C75-450E-828A-18482046111C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxhelper.exe [147992 2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D3F2E86-7372-47FB-AB58-3C7EC1BFD124} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxhelper.exe [147992 2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA859AAC-D4D9-4BD2-926E-36D8C7620F41} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2182184 2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C66AAA1-3C4F-440B-BFFD-08877564106A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2182184 2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7FCDE46-F8B6-4BB7-AA32-DFF92C6B74DC} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {90DD0E29-D16E-4B9C-87A0-89C8075F4EDD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-93754314-3111490570-4120607304-1001 => C:\Users\danie\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\OneDriveLauncher.exe [670528 2025-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {919ECE32-6FEB-40BD-BDED-E37BAACB9776} - System32\Tasks\RtkAudUService64_BG => C:\windows\system32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{319facf1-c9ca-44a0-b2f9-b15813f65d0a}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-23]
Edge Extension: (Dokumenty Google offline) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-23]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-03-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx

FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2025-03-23] [Legacy] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\program files\mcafee\msc\npmcsnffpl64.dll [2019-04-07] (McAfee, Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\program files (x86)\mcafee\msc\npmcsnffpl.dll [2019-04-07] (McAfee, Inc. -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7492904 2025-03-23] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [806696 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2438440 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [858920 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\132.0.28559.198\elevation_service.exe [1945208 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-03-23] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
S2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\AppHelperCap.exe [889976 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\DiagsCap.exe [888928 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\NetworkCap.exe [885344 2025-02-23] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2d1de90f36b6160c\x64\SysInfoCap.exe [889464 2025-02-23] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_12\McApExe.exe [745880 2019-01-23] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; c:\program files\common files\McAfee\ActWiz\McAWFwk.exe [458688 2018-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\McCSPServiceHost.exe [2158952 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [371840 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [604216 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\windows\system32\mfevtps.exe [509728 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1692552 2018-12-19] (McAfee, Inc. -> McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1360384 2019-02-05] (McAfee, Inc. -> McAfee, Inc.)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [12997416 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3174840 2024-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [133592 2024-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [246880 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [384096 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296032 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84576 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
S3 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [37984 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [278616 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553568 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [98912 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69728 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [959064 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1427552 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [207456 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [389720 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77384 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218408 2018-12-24] (McAfee, Inc. -> McAfee, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [511024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [373808 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [86136 2019-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [517168 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [981032 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [563728 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109072 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117800 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [76832 2022-09-30] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2023-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2025-03-23] (Microsoft Windows -> Microsoft Corporation)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2020-08-21] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [55856 2024-04-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [594304 2024-04-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [105856 2024-04-01] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U3 aspnet_state; no ImagePath
U3 aswArDisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-23 13:28 - 2025-03-23 13:28 - 000000000 ____D C:\Users\danie\AppData\Local\Comms
2025-03-23 13:28 - 2025-03-23 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2025-03-23 13:24 - 2025-03-23 13:24 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2025-03-23 13:24 - 2025-03-23 13:24 - 000002129 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2025-03-23 13:24 - 2025-03-23 13:17 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-03-23 13:22 - 2025-03-23 13:22 - 000002156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SecureLine VPN.lnk
2025-03-23 13:22 - 2025-03-23 13:22 - 000002144 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2025-03-23 13:20 - 2025-03-23 13:20 - 000000000 ____D C:\Users\danie\AppData\Roaming\Avast Software
2025-03-23 13:20 - 2025-03-23 13:20 - 000000000 ____D C:\Users\danie\AppData\Local\CEF
2025-03-23 13:19 - 2025-03-23 13:20 - 000000000 ____D C:\Users\danie\AppData\Local\AVAST Software
2025-03-23 13:19 - 2025-03-23 13:19 - 000003844 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2025-03-23 13:19 - 2025-03-23 13:19 - 000003756 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-93754314-3111490570-4120607304-1001
2025-03-23 13:19 - 2025-03-23 13:19 - 000003260 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2025-03-23 13:19 - 2025-03-23 13:19 - 000002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-03-23 13:19 - 2025-03-23 13:19 - 000002488 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-03-23 13:18 - 2025-03-23 13:18 - 000003510 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2025-03-23 13:18 - 2025-03-23 13:18 - 000003386 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2025-03-23 13:18 - 2025-03-23 13:18 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2025-03-23 13:17 - 2025-03-23 13:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-03-23 13:16 - 2025-03-23 13:25 - 000000000 ____D C:\ProgramData\Avast Software
2025-03-23 13:16 - 2025-03-23 13:22 - 000000000 ____D C:\Program Files\Avast Software
2025-03-23 13:16 - 2025-03-23 13:16 - 000249072 _____ (Gen Digital Inc.) C:\Users\danie\Downloads\online_instalační_soubor_aplikace_avast_free_antivirus (2).exe
2025-03-23 13:16 - 2025-03-23 13:16 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe
2025-03-23 13:16 - 2025-03-23 13:16 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2025-03-23 13:15 - 2025-03-23 13:15 - 000000000 ____D C:\Users\danie\Desktop\FRST-OlderVersion
2025-03-23 13:15 - 2025-03-23 13:15 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Proof
2025-03-23 13:14 - 2025-03-23 13:15 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Office
2025-03-23 13:14 - 2025-03-23 13:14 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Word
2025-03-23 13:14 - 2025-03-23 13:14 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\AddIns
2025-03-23 13:13 - 2025-03-23 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2025-03-23 12:58 - 2025-03-23 13:13 - 000000000 ____D C:\Users\danie\AppData\Local\HP
2025-03-23 12:58 - 2025-03-23 12:58 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-03-23 12:58 - 2025-03-23 12:58 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-03-23 12:58 - 2025-03-23 12:58 - 000003350 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-93754314-3111490570-4120607304-1001
2025-03-23 12:58 - 2025-03-23 12:58 - 000002384 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-23 12:58 - 2025-03-23 12:58 - 000000000 ____D C:\Users\Default\AppData\Local\HP
2025-03-23 12:58 - 2025-03-23 12:58 - 000000000 ____D C:\Users\danie\AppData\Local\ToastNotificationManagerCompat
2025-03-23 12:58 - 2025-03-23 12:58 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-03-23 12:57 - 2025-03-23 13:13 - 000000000 ____D C:\Users\danie\AppData\Local\Publishers
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\Tray2Agent
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\PlaceholderTileLogoFolder
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\FilterInfo
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\CaliTray2Agent
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\Agent2Tray
2025-03-23 12:57 - 2025-03-23 12:57 - 000000000 ____D C:\Users\danie\AppData\Local\Agent2CaliTray
2025-03-23 12:53 - 2025-03-23 13:26 - 000000000 ____D C:\ProgramData\McInstTemp0104091742730814
2025-03-23 12:53 - 2025-03-23 13:21 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache
2025-03-23 12:51 - 2025-03-23 12:52 - 000000000 ____D C:\Users\danie\AppData\Roaming\HP
2025-03-23 12:51 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\Synaptics
2025-03-23 12:51 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Network
2025-03-23 12:51 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\Adobe
2025-03-23 12:51 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Local\VirtualStore
2025-03-23 12:51 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Local\Apps\2.0
2025-03-23 12:50 - 2025-03-23 12:50 - 001670872 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-23 12:50 - 2025-03-23 12:50 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-03-23 12:50 - 2025-03-23 12:50 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2025-03-23 12:50 - 2025-03-23 12:50 - 000000020 ___SH C:\Users\danie\ntuser.ini
2025-03-23 12:50 - 2025-03-23 12:50 - 000000000 ____D C:\Users\danie\AppData\Local\ConnectedDevicesPlatform
2025-03-23 12:46 - 2025-03-23 12:46 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{23FB14C8-0D82-4DE2-A968-3BBD8AF319EA}
2025-03-23 12:46 - 2025-03-23 12:46 - 000003592 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{39E0F95A-297C-4BE2-B21B-9C375CB2EB9C}
2025-03-23 12:45 - 2025-03-23 13:25 - 000000292 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-03-23 12:45 - 2025-03-23 13:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-23 12:45 - 2025-03-23 12:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2025-03-23 12:45 - 2025-03-23 12:45 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2550304826-3164911718-1523452680-500
2025-03-23 12:45 - 2025-03-23 12:45 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2025-03-23 12:45 - 2025-03-23 12:45 - 000002662 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2025-03-23 12:45 - 2025-03-23 12:45 - 000002650 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare)
2025-03-23 12:45 - 2025-03-23 12:45 - 000002310 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\ProgramData\Šablony
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\ProgramData\Plocha
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\ProgramData\Dokumenty
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 _SHDL C:\ProgramData\Data aplikací
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\SystemCertificates
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\IME
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Crypto
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\SystemCertificates
2025-03-23 12:45 - 2025-03-23 12:45 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Crypto
2025-03-23 12:45 - 2019-05-14 00:43 - 000002848 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-194623788-732485397-4118678841-500
2025-03-23 12:45 - 2019-04-15 16:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2025-03-23 12:44 - 2025-03-23 12:44 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2025-03-23 12:43 - 2025-03-23 13:22 - 000000000 ____D C:\Users\danie\AppData\Local\Packages
2025-03-23 12:43 - 2025-03-23 13:09 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Spelling
2025-03-23 12:43 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows
2025-03-23 12:43 - 2025-03-23 12:51 - 000000000 ____D C:\Users\danie
2025-03-23 12:43 - 2025-03-23 12:45 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows
2025-03-23 12:43 - 2025-03-23 12:45 - 000000000 ____D C:\Users\defaultuser100000
2025-03-23 12:43 - 2025-03-23 12:45 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Windows
2025-03-23 12:43 - 2025-03-23 12:45 - 000000000 ____D C:\Users\Dan2
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Šablony
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Soubory cookie
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Poslední
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Okolní tiskárny
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Okolní síť
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Nabídka Start
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Dokumenty
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Obrázky
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Hudba
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Documents\Filmy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Šablony
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Soubory cookie
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Poslední
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Okolní tiskárny
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Okolní síť
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Nabídka Start
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Dokumenty
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Documents\Obrázky
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Documents\Hudba
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Documents\Filmy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\danie\AppData\Local\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Šablony
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Soubory cookie
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Poslední
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Okolní tiskárny
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Okolní síť
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Nabídka Start
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Dokumenty
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Documents\Obrázky
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Documents\Hudba
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Documents\Filmy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 _SHDL C:\Users\Dan2\AppData\Local\Data aplikací
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages
2025-03-23 12:43 - 2025-03-23 12:43 - 000000000 ____D C:\Users\Dan2\AppData\Local\Packages
2025-03-23 12:43 - 2024-04-01 08:26 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling
2025-03-23 12:43 - 2024-04-01 08:26 - 000000000 ____D C:\Users\Dan2\AppData\Roaming\Microsoft\Spelling
2025-03-23 12:38 - 2025-03-23 13:26 - 000000000 ____D C:\ProgramData\HP
2025-03-23 12:38 - 2025-03-23 12:42 - 000000000 ____D C:\ProgramData\Validity
2025-03-23 12:38 - 2025-03-23 12:38 - 000000027 _____ C:\WINDOWS\system32\Drivers\RtkR0Log.dat
2025-03-23 12:37 - 2025-03-23 13:25 - 000420912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-23 12:37 - 2025-03-23 13:25 - 000012288 ___SH C:\DumpStack.log.tmp
2025-03-23 12:37 - 2025-03-23 12:51 - 000000000 ____D C:\ProgramData\Intel
2025-03-23 12:37 - 2025-03-23 12:47 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-23 12:37 - 2025-03-23 12:47 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-03-23 12:37 - 2025-03-23 12:43 - 000000000 ____D C:\ProgramData\Realtek
2025-03-23 12:37 - 2025-03-23 12:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-23 12:37 - 2025-03-23 12:37 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2025-03-23 12:37 - 2025-03-23 12:37 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2025-03-23 12:37 - 2019-03-13 17:37 - 000022030 _____ C:\WINDOWS\system32\Drivers\Gen3pKey.dat
2025-03-23 12:37 - 2018-10-18 16:36 - 000017232 _____ C:\WINDOWS\system32\Drivers\RTSPKPT1.dat
2025-03-23 12:37 - 2018-10-18 16:36 - 000017232 _____ C:\WINDOWS\system32\Drivers\RTSPKPT.dat
2025-03-23 12:36 - 2025-03-23 12:58 - 000000000 ____D C:\Program Files\HP
2025-03-23 12:34 - 2025-03-23 12:49 - 000000000 ____D C:\Windows.old
2025-03-23 12:33 - 2025-03-23 12:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2025-03-23 12:32 - 2025-03-23 12:32 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-23 12:29 - 2025-03-23 12:29 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json
2025-03-23 12:29 - 2025-03-23 12:29 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-03-23 12:28 - 2025-03-23 12:28 - 000027617 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-03-23 12:28 - 2025-03-23 12:28 - 000027617 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-03-23 12:25 - 2025-03-23 12:25 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2025-03-23 12:25 - 2025-03-23 12:25 - 000000000 ____D C:\Program Files\Reference Assemblies
2025-03-23 12:25 - 2025-03-23 12:25 - 000000000 ____D C:\Program Files\MSBuild
2025-03-23 12:25 - 2025-03-23 12:25 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2025-03-23 12:25 - 2025-03-23 12:25 - 000000000 ____D C:\Program Files (x86)\MSBuild
2025-03-23 12:24 - 2025-03-23 12:50 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2025-03-23 12:24 - 2025-03-23 12:24 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2025-03-23 12:24 - 2025-03-23 12:24 - 000000000 ____D C:\WINDOWS\addins
2025-03-23 12:21 - 2025-03-23 12:42 - 000000000 ____D C:\WINDOWS\system32\Intel
2025-03-23 12:21 - 2025-03-23 12:22 - 000000000 ____D C:\WINDOWS\system32\cAVS
2025-03-23 12:21 - 2025-03-23 12:21 - 000000000 ____D C:\WINDOWS\Firmware
2025-03-23 12:19 - 2025-03-23 12:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2025-03-23 12:16 - 2025-03-23 12:50 - 000000000 ____D C:\WINDOWS\Panther
2025-03-23 12:00 - 2025-03-23 12:45 - 000000000 ___HD C:\$SysReset
2025-03-22 20:36 - 2025-03-22 20:38 - 000000000 ____D C:\Users\danie\Desktop\Brusel cesta
2025-03-21 16:55 - 2025-03-21 16:57 - 000030805 _____ C:\Users\danie\Downloads\Addition.txt
2025-03-21 16:53 - 2025-03-21 16:55 - 000076670 _____ C:\Users\danie\Downloads\FRST.txt
2025-03-14 15:16 - 2025-03-14 15:16 - 000001181 _____ C:\Users\danie\Downloads\Flight_from_Brussels,_BE_(BRU)_to_Prague,_CZ_(PRG).ics
2025-03-14 15:16 - 2025-03-14 15:16 - 000001179 _____ C:\Users\danie\Downloads\Flight_from_Prague,_CZ_(PRG)_to_Brussels,_BE_(BRU) (1).ics
2025-03-14 15:16 - 2025-03-14 15:16 - 000001139 _____ C:\Users\danie\Downloads\Hotel_check_in_reminder_Thon_Hotel_Brussels_City_Centre (1).ics
2025-03-14 14:52 - 2025-03-14 14:52 - 001040301 _____ C:\Users\danie\Downloads\reservation_confirmation_eHotel-646882730_Mr.DANIELMARCIK_SheljaDwivedi_JurajHaring_MariaOmastova.pdf
2025-03-13 17:55 - 2025-03-13 17:55 - 000001179 _____ C:\Users\danie\Downloads\Flight_from_Prague,_CZ_(PRG)_to_Brussels,_BE_(BRU).ics
2025-03-13 17:55 - 2025-03-13 17:55 - 000001139 _____ C:\Users\danie\Downloads\Hotel_check_in_reminder_Thon_Hotel_Brussels_City_Centre.ics
2025-03-02 18:42 - 2025-03-02 18:42 - 000188901 _____ C:\Users\danie\Downloads\ΑΠΕ_B_7944687.PDF
2025-03-02 18:41 - 2025-03-02 18:41 - 000303562 _____ C:\Users\danie\Downloads\AEGEAN_AIRLINES_SA_E_ticket_Confirmation.pdf
2025-02-28 23:37 - 2025-02-28 23:37 - 000010967 _____ C:\Users\danie\Desktop\Skipasy Flachau.xlsx
2025-02-25 22:15 - 2025-03-09 17:50 - 000046643 _____ C:\Users\danie\Desktop\Sešit1.xlsx
2025-02-22 22:24 - 2025-03-23 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2025-02-22 22:24 - 2025-02-22 22:24 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2025-02-22 22:24 - 2025-02-22 22:24 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2025-02-22 21:03 - 2025-03-23 12:45 - 000006748 _____ C:\Users\Dan2\Desktop\Odebrané aplikace.html
2025-02-22 17:52 - 2025-02-22 17:52 - 000001189 _____ C:\Users\danie\Desktop\Fixlog.txt
2025-02-22 17:51 - 2025-03-22 12:47 - 000001542 _____ C:\Users\danie\Desktop\fixlist.txt
2025-02-22 12:24 - 2025-02-22 12:32 - 000027668 _____ C:\Users\danie\Desktop\Addition.txt
2025-02-22 12:21 - 2025-03-23 13:27 - 000030994 _____ C:\Users\danie\Desktop\FRST.txt
2025-02-22 12:20 - 2025-03-23 13:15 - 002404352 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-23 13:27 - 2021-02-09 10:05 - 000000000 ____D C:\FRST
2025-03-23 13:26 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-23 13:26 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files (x86)\McAfee
2025-03-23 13:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-23 13:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-23 13:25 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-23 13:25 - 2024-04-01 08:21 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2025-03-23 13:25 - 2019-08-08 23:05 - 000000000 ____D C:\Intel
2025-03-23 13:24 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-23 13:23 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-23 13:23 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-03-23 13:13 - 2019-08-08 23:10 - 000000000 ____D C:\ProgramData\Packages
2025-03-23 13:06 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-23 13:06 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-23 12:58 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-23 12:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\appcompat
2025-03-23 12:55 - 2019-08-08 23:13 - 000000000 ____D C:\ProgramData\McAfee
2025-03-23 12:51 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-03-23 12:50 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\spool
2025-03-23 12:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-03-23 12:45 - 2024-11-17 21:56 - 000007156 _____ C:\Users\danie\Desktop\Odebrané aplikace.html
2025-03-23 12:45 - 2024-11-17 21:56 - 000006748 _____ C:\Users\defaultuser100000\Desktop\Odebrané aplikace.html
2025-03-23 12:45 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Windows NT
2025-03-23 12:45 - 2024-02-03 15:04 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2025-03-23 12:45 - 2022-12-11 23:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2025-03-23 12:45 - 2020-01-16 23:17 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2025-03-23 12:44 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2025-03-23 12:43 - 2024-04-01 08:26 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2025-03-23 12:43 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-03-23 12:43 - 2019-08-08 23:12 - 000000000 ____D C:\Users\Default\AppData\Local\Packages
2025-03-23 12:42 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-03-23 12:42 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-03-23 12:42 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2025-03-23 12:42 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\WaaS
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\schemas
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\OCR
2025-03-23 12:42 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\IME
2025-03-23 12:42 - 2019-08-08 23:13 - 000000000 ____D C:\ProgramData\McInstTemp0076191565302393
2025-03-23 12:42 - 2019-08-08 23:10 - 000000000 ____D C:\WINDOWS\HP
2025-03-23 12:42 - 2019-08-08 23:07 - 000000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA%
2025-03-23 12:42 - 2019-08-08 23:06 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-03-23 12:42 - 2019-08-08 23:00 - 000000000 ____D C:\Program Files (x86)\Intel
2025-03-23 12:42 - 2019-08-08 22:59 - 000000000 ____D C:\ProgramData\Package Cache
2025-03-23 12:42 - 2019-08-08 22:58 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2025-03-23 12:42 - 2019-05-14 00:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2025-03-23 12:42 - 2019-05-14 00:54 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-03-23 12:42 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\Microsoft Office 15
2025-03-23 12:42 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\Microsoft Office
2025-03-23 12:42 - 2019-05-14 00:53 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2025-03-23 12:42 - 2019-05-14 00:53 - 000000000 ___RD C:\Program Files\Online Services
2025-03-23 12:42 - 2019-05-14 00:53 - 000000000 ___RD C:\Program Files (x86)\Online Services
2025-03-23 12:42 - 2019-05-14 00:52 - 000000000 ____D C:\Program Files (x86)\HP
2025-03-23 12:42 - 2019-03-19 07:20 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2025-03-23 12:42 - 2019-03-19 07:20 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2025-03-23 12:42 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Security
2025-03-23 12:41 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-03-23 12:41 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\McAfee.com
2025-03-23 12:41 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\McAfee
2025-03-23 12:41 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\Common Files\McAfee
2025-03-23 12:41 - 2019-08-08 23:13 - 000000000 ____D C:\Program Files\Common Files\AV
2025-03-23 12:41 - 2019-08-08 23:06 - 000000000 ____D C:\Program Files\ELAN
2025-03-23 12:41 - 2019-08-08 23:00 - 000000000 ____D C:\Program Files\Intel
2025-03-23 12:41 - 2019-05-14 00:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-03-23 12:41 - 2019-05-14 00:54 - 000000000 ____D C:\Program Files\HPCommRecovery
2025-03-23 12:41 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2025-03-23 12:38 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-23 12:37 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2025-03-23 12:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-03-23 12:34 - 2024-04-01 08:29 - 000000000 ____D C:\WINDOWS\Setup
2025-03-23 12:34 - 2024-04-01 08:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-03-23 12:34 - 2024-04-01 08:26 - 000000000 __RHD C:\Users\Public\Libraries
2025-03-23 12:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-03-23 12:34 - 2024-01-07 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2025-03-23 12:34 - 2022-11-04 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verbatim
2025-03-23 12:34 - 2022-08-05 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2025-03-23 12:34 - 2022-06-24 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2025-03-23 12:34 - 2020-09-30 23:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2025-03-23 12:32 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-23 12:32 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\WUModels
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\et-EE
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\es-MX
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Com
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-03-23 12:32 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-23 12:32 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-03-23 12:30 - 2024-04-01 17:31 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2025-03-23 12:30 - 2024-04-01 17:31 - 000028898 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2025-03-23 12:30 - 2024-04-01 08:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-03-23 12:30 - 2024-04-01 08:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2025-03-23 12:29 - 2024-04-01 08:22 - 000063064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcLpioDMA.dll
2025-03-23 12:29 - 2024-04-01 08:22 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcPseDMA.dll
2025-03-23 12:29 - 2024-04-01 08:22 - 000062944 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtPL080.dll
2025-03-23 12:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2025-03-23 12:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\MUI
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2025-03-23 12:23 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2025-03-23 12:23 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-02-22 21:11 - 2019-09-23 20:42 - 000000000 ___RD C:\Users\danie\OneDrive

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-03-2025
Ran by Dan (23-03-2025 13:29:23)
Running from C:\Users\danie\Desktop
Microsoft Windows 11 Home Version 24H2 26100.3194 (X64) (2025-03-23 11:50:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-93754314-3111490570-4120607304-500 - Administrator - Disabled)
Dan (S-1-5-21-93754314-3111490570-4120607304-1001 - Administrator - Enabled) => C:\Users\danie
Dan2 (S-1-5-21-93754314-3111490570-4120607304-1525 - Administrator - Enabled) => C:\Users\Dan2
DefaultAccount (S-1-5-21-93754314-3111490570-4120607304-503 - Limited - Disabled)
Guest (S-1-5-21-93754314-3111490570-4120607304-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-93754314-3111490570-4120607304-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 25.2.9898.2555 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 132.0.28559.198 - Gen Digital Inc.)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 25.2.11202.14726 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.25 - ELAN microelectronics Crop.)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Intel(R) Chipset Device Software (HKLM\...\{D4DC16D3-5547-4A3B-A9EB-FF9B4C2EA4A1}) (Version: 10.1.17969.8134 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{4625C928-49BB-44DC-92E3-B9EC0972C72D}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0854C811-6DAD-441D-AB36-2F73631A04A1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{7715518B-08D0-4754-BB81-FE4FC61DFDF7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{4C230277-5515-4B51-B9E6-97880684B10C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{FEB772C1-919E-4145-9691-AFFAC915496F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R18 - McAfee, Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 134.0.3124.83 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.83 - Microsoft Corporation) Hidden
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft Office 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\OneDriveSetup.exe) (Version: 25.035.0223.0003 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.31301 - Microsoft)
Microsoft VC++ redistributables repacked. (HKLM\...\{2FAF2A80-5906-467E-8AD2-B83C94383600}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F85F7FF0-5DFF-4BC0-9045-C9573D1BC11F}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2025-03-23] (Amazon.com)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2025-03-23] (INTEL CORP) [Startup Task]
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2025-03-23] (Priceline Partner Network)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.30.0_x64__xbfy0k16fey96 [2025-03-23] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.3.176.0_x64__dt26b99r8h8gj [2025-03-23] (Realtek Semiconductor Corp)
HP CoolSense -> C:\Program Files\WindowsApps\ad2f1837.hpcoolsense_1.0.6.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_158.1.1131.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.42.15.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.26.0_x64__v10z8vjag6ke6 [2025-03-23] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-03-23] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1041.0_x64__8j3eq9eme6ctt [2025-03-23] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.42.0_x64__w1wdnht996qgy [2025-03-23] (LinkedIn) [Startup Task]
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.5.25.0_x64__kx24dqmazqk8j [2025-03-23] (Random Salad Games LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\danie\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.31301\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{7d043d4e-4259-f459-3630-7b434fd7752c}\localserver32 -> C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe (HP Inc. -> HP Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-04-07] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-04-07] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\danie\anaconda3\Scripts\activate.bat C:\Users\danie\anaconda3

==================== Loaded Modules (Whitelisted) =============

2025-03-23 13:09 - 2025-03-23 13:09 - 000869376 _____ (.NET Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.T417b639d#\47a14677a8426068c91899740d9def89\Microsoft.Toolkit.Uwp.Notifications.ni.dll
2025-03-23 13:09 - 2025-03-23 13:09 - 000440320 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LauncherSDK\e932983a03a3c853d80ce56c4956c01f\LauncherSDK.ni.dll
2025-03-23 13:09 - 2025-03-23 13:09 - 000038400 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Logging\9cb86ea041a578c1a5346faadbb2bf45\Logging.ni.dll
2025-03-23 13:09 - 2025-03-23 13:09 - 000153600 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\RpcClient\5894299124b98e226d55e1b61792f0d5\RpcClient.ni.dll
2025-03-23 13:09 - 2025-03-23 13:09 - 000125440 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WMISDK\abca71b16b0953a1ee1983539e6d48df\WMISDK.ni.dll
2025-03-23 13:09 - 2025-03-23 13:09 - 003884544 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\ee10bc4e78e9ccd4dd117ff08dbaee77\Newtonsoft.Json.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2025-02-18] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2025-02-18] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\mcsniepl64.dll [2019-04-07] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files (x86)\mcafee\msc\mcsniepl.dll [2019-04-07] (McAfee, Inc. -> McAfee, Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\Desktop\202502\Flachau\13\IMG_4180.JPEG
HKU\S-1-5-21-93754314-3111490570-4120607304-1525\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Realtek RTL8822BE 802.11ac PCIe Adapter -> rtwlane.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B5D8D3DC-538D-4D7D-9A70-E704BAB0221D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{711D3450-86D3-4D2B-B845-F18492728E67}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{53E70713-A9DB-467F-B11A-64E6EE10387B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13339E07-5F13-4CC6-9FAF-ABC925F84020}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E2A1351D-0889-4B15-9E99-C999AD04A423}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{6ABBADD3-57FA-4516-8FB3-F6D501CBB91A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe => No File
FirewallRules: [{281C83DF-540A-4725-B75C-045BE99DD0CB}] => (Allow) C:\Program Files\WindowsApps\msteams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AB9FBB86-0211-4E23-ACEA-261EE21EF14A}] => (Allow) C:\Program Files\WindowsApps\msteams_25044.2208.3471.2155_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0AAA8A88-2224-4FC8-A7EA-DC0B2A9D4BB8}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{A0C4CF13-AF6F-4217-8755-CCC1C93B80A9}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{43D72491-2484-4822-B0E5-940BF6252FBF}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{05149571-F512-4388-809C-AB3701BEF4B9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C286D1C0-4DBD-49E0-B711-D6C2CE21D9B2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{45C9725E-05AF-4B26-93DF-6BF3FE4D187E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{0623A0F8-C421-40E2-BA0E-13C89BD94F9C}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{870C2C12-F2AE-4860-821C-24824FFFB7B0}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{B8E0465A-F9E4-4174-90CA-649A5EAB1A58}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{9BF4FEDA-0E68-4194-878F-E5ECC4D35014}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:237.15 GB) (Free:83.53 GB) (35%)

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================

System errors:
=============
Error: (03/23/2025 01:25:07 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.

Error: (03/23/2025 12:44:44 PM) (Source: WinRM) (EventID: 10142) (User: )
Description: Služba WinRM nemůže přenést modul pro naslouchání s IP adresou * a přenosem HTTP. Modul pro naslouchání se stejnou konfigurací adresy a přenosu již existuje.

Error: (03/23/2025 12:43:40 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.

Error: (03/23/2025 12:43:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba seznamu sítí byla ukončena s následující chybou:
Zařízení není připraveno.

Error: (03/23/2025 12:43:33 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/23/2025 12:41:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba seznamu sítí byla ukončena s následující chybou:
Zařízení není připraveno.

Error: (03/23/2025 12:41:33 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/23/2025 12:39:34 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba Rozšíření a oznámení tiskárny je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


CodeIntegrity:
===============
Date: 2025-03-23 13:28:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2025-03-23 13:28:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2025-03-23 13:28:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2025-03-23 13:28:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.25 03/27/2024
Motherboard: HP 85C4
Processor: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz
Percentage of memory in use: 68%
Total physical RAM: 8002.3 MB
Available physical RAM: 2528.12 MB
Total Virtual: 9922.3 MB
Available Virtual: 4726.74 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.15 GB) (Free:83.53 GB) (Model: SK hynix BC501 HFM256GDJTNG-8310A) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:0.01 GB) (Model: WDC WD10SPZX-60Z10T0) NTFS

\\?\Volume{7069b8fa-8139-4eca-8274-7f4616022b76}\ () (Fixed) (Total:1.05 GB) (Free:0.14 GB) NTFS
\\?\Volume{73ee637a-f6bf-4282-8ec2-3d4bb3c69d1d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0C9B4EB9)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt =======================
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz