kontrola logu
Napsal: 08 kvě 2025 14:28
prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Dell (08-05-2025 15:20:53)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) (2024-11-23 08:43:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3254839106-4227605653-2461104676-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3254839106-4227605653-2461104676-503 - Limited - Disabled)
Dell (S-1-5-21-3254839106-4227605653-2461104676-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3254839106-4227605653-2461104676-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3254839106-4227605653-2461104676-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3254839106-4227605653-2461104676-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AudioHUBWwwAccessConnector 1.0.0.2320 (HKLM-x32\...\AudioHUBWwwAccessConnector) (Version: 1.0.0.2320 - MEDIAN s.r.o.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 134.0.29548.179 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Eclipse Temurin JRE with Hotspot 11.0.26+4 (x64) (HKLM\...\{45E29707-E9DD-4E9C-835C-A60940D58BF7}) (Version: 11.0.26.4 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x64) (HKLM\...\{35151E48-24F7-4295-82D2-F2B3C700F9A6}) (Version: 8.0.442.6 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x86) (HKLM-x32\...\{93A18363-B57B-4859-9F13-58DEED9E6EC0}) (Version: 8.0.442.6 - Eclipse Adoptium)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.4.0.27683 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.85 - Google LLC)
IrfanView 4.70 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 441 (64-bit) (HKLM\...\{77724AE4-039E-4CA4-87B4-2F64180441F0}) (Version: 8.0.4410.7 - Oracle Corporation)
LibreOffice 25.2.1.2 (HKLM\...\{C155ED9C-4F2D-408C-BF76-07CB2B126B25}) (Version: 25.2.1.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.50 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 136.0.1 (x64 cs)) (Version: 136.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.8.0 (x64 cs)) (Version: 128.8.0 - Mozilla)
Program pro odinstalaci nástroje tiskárny EPSON LX-1310 ESC/P (HKLM\...\EPSON LX-1310 ESC/P) (Version: - SEIKO EPSON Corporation)
Program pro odinstalaci nástroje tiskárny EPSON LX-300+II ESC/P (HKLM\...\EPSON LX-300+II ESC/P) (Version: - SEIKO EPSON Corporation)
Skype 8.138 (HKLM-x32\...\{1BC908B3-778D-4B6B-84BE-75562413506C}) (Version: 8.138.0.203 - Skype Technologies S.A.)
Skype verze 8.138 (HKLM-x32\...\Skype_is1) (Version: 8.138 - Skype Technologies S.A.) Hidden
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Spotify (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
TapinRadio 2.15.98.8 (x64) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.48799 - TeamViewer)
TomTom MyDrive Connect 4.4.4.5059 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.4.5059 - TomTom)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Chrome apps:
============
KVIFF.TV (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b3c7e3d83561e6c703e38f6b919f3b28) (Version: 1.0 - Google\Chrome)
Správce hesel Google (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b760b48ad42951aaa3e37e2789e2f196) (Version: 1.0 - Google\Chrome)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
9390SimonKnuth.ScannerforWindows10 -> C:\Program Files\WindowsApps\9390SimonKnuth.ScannerforWindows10_3.2.9.0_x64__69n05hp4v3s90 [2025-04-08] (Simon Knuth)
Akce kliknutím (Preview) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
Doc Scan PDF Scanner -> C:\Program Files\WindowsApps\53058betterapp.AnyScan_1.2.4.0_x64__90ct3cgs7yy6a [2025-04-08] (better app)
Escanear Fácil -> C:\Program Files\WindowsApps\642Jabasoft.EscanearFcil_3.1.6.0_x64__3jhqbycpkrcae [2025-05-01] (Jabasoft)
Intel(R) Management and Security Status -> C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2405.6.0.0_x64__8j3eq9eme6ctt [2025-01-05] (INTEL CORP) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe [2025-04-23] (Microsoft Corporation)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-04-25] (Spotify AB) [Startup Task]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2024-11-09] (Waves Audio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2517.4.0_x64__cv1g1gvanyjgm [2025-05-04] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2024-10-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Desktop\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_iepmbhehofohhofgnnmaicegcempfonb\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2025-05-08 14:59 - 2025-05-08 14:59 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2025-05-08 14:59 - 2025-05-08 14:59 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2020-09-21 10:39 - 2020-09-21 10:39 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_441\bin\ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_441\bin\jp2ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-11.0.26.4-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\15260264710321002627\133910165066998143.jpg
HKU\S-1-5-21-3254839106-4227605653-2461104676-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet 2: Intel(R) Ethernet Connection (10) I219-V -> e1d68x64.sys
Síťové připojení Bluetooth 3: Bluetooth Device (Personal Area Network) #3 -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FoxitReaderUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService135.0.7023.0 => 2
MSCONFIG\Services: GoogleUpdaterService135.0.7023.0 => 2
MSCONFIG\Services: iaStorAfsService => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LibreOfficeMaintenance => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PC Cleaner Service => 3
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WavesSysSvc => 2
MSCONFIG\Services: WMIRegistrationService => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DB438734-CD19-438A-92FD-1A63DED54934}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0C59FE4-025D-4CDE-AF51-EE56BDCEFEFF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{AADD9B49-81F8-4105-BC82-65D7F46A1877}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0757C34E-F48E-4626-BB07-CF0A171619EE}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3D5A135E-EDBA-4084-9DAA-7C738C3DB2C2}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BD15058-88EB-48CD-A7FC-EF34E778BF5C}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{371CCB7C-6C1C-497D-B82F-DF25FC36B997}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{042246A8-0AEB-4199-8AFE-02BEF7B252C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [{9974C2F3-261A-4A0C-BF1A-F23D4912B3CE}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{D130D16E-48AF-44D8-AFFB-B7939A74C342}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{22CBC9DB-B798-4F2B-B206-D6681FB6A80E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5549E25C-9938-41A0-BAB2-D277A703F33D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73C88CDA-B824-4642-88EA-96C7C58558AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F322EE-537E-49C1-9DC7-817A81D37B96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F33B8620-3E52-4933-9FE2-34BDCC380C6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3376012-51EF-4DCB-AD70-508161974949}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A30FBBD-4A55-4D62-9330-7E2D2135E997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{65FF18F4-411C-4385-A639-EFE3165FA1DC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F29A971D-8D4B-4111-8FB7-097BF4BA5440}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{2ABF019E-22CE-49A4-B76A-EE20C09BD699}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FA3DBA3-BEAE-4C52-80BA-8F1FA4CE1E6E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1685ABFE-07B2-4F8C-8604-254C34B05428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7622FA9D-3E03-46B9-B42D-759EECB623F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D15D197-E73E-4B15-880C-101C97591F22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33092260-FDA6-4D1F-926D-61A3A785F6C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFDB2154-3708-43FC-865E-E326B9A9977A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F122C1AF-E4C0-409D-BFD6-AA313F048DD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BE06391-42B4-4703-A2F5-CD855C9AAE62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36697136-DC15-45CB-96A0-0A1170710180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0D88CD7-5963-4159-BE6A-0BD92D851F95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8821FBA3-6A9B-420F-84E0-DD347A8E7979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F895DB4-95F3-496F-A009-B841042B76FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:237.4 GB) (Free:169.27 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/08/2025 02:58:50 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: svchost.exe_NgcCtnrSvc, verze: 10.0.26100.1150, časové razítko: 0xfdace0d9
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.26100.3037, časové razítko: 0xc4a5da14
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d843d
ID chybujícího procesu: 0x112c
Čas spuštění chybující aplikace: 0x1dbc018f139be89
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID sestavy: ed779354-e9e7-494f-8cda-63c0b7374887
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/07/2025 08:10:13 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 135.0.7049.85 programu chrome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (05/06/2025 07:56:30 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-0LLDMOB)
Description: Název chybující aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe, verze: 1.0.0.2320, časové razítko: 0x661f8f3c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.3912, časové razítko: 0xc16c5511
Kód výjimky: 0xe0434352
Posun chyby: 0x0015da34
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0x1dbbe4b7ebc47cc
Cesta k chybující aplikaci: C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 6849efd0-9785-4559-910a-4a8c26a96738
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/06/2025 07:56:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ApplicationException
na System.Threading.Mutex.ReleaseMutex()
na AudioHUB.Processing.WwwAccessConnectorCommon.WatchingApp.WatchingMutex.Wait(System.Action)
na AudioHUB.Processing.WwwAccessConnectorUrlMonitor.Program.Main()
Error: (05/06/2025 07:46:30 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12094ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:21 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12110ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:15 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5532, identifikátor PID ProfSvc: 2244.
Error: (05/05/2025 05:11:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12078ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (05/08/2025 02:58:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NgcCtnrSvc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (05/08/2025 02:58:47 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffffcde912ecce38, 0x0000000000000000, 0xfffff807dc9b0791, 0x0000000000000002)C:\WINDOWS\Minidump\050825-10593-01.dmp2f8a2212-d148-4b17-be54-2dee5de2f696
Error: (05/08/2025 02:58:41 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.
Error: (05/08/2025 02:58:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:53:28, 08.05.2025) bylo neočekávané.
Error: (05/08/2025 02:00:37 PM) (Source: IntcOED) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/08/2025 01:37:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 08:20:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0LLDMOB)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 07:28:15 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffff841071fef968, 0x0000000000000000, 0xfffff80575db0791, 0x0000000000000002)C:\WINDOWS\Minidump\050725-11625-01.dmp0ee59ca8-75a7-40a1-a879-b36e672599ab
CodeIntegrity:
===============
Date: 2025-03-12 13:55:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2025-03-12 13:54:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 03/13/2023
Motherboard: Dell Inc. 0D2CKD
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 65%
Total physical RAM: 7917.94 MB
Available physical RAM: 2698.15 MB
Total Virtual: 8429.94 MB
Available Virtual: 2988.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.4 GB) (Free:169.27 GB) (Model: SSDPEMKF256G8 NVMe INTEL 256GB) (Protected) NTFS
\\?\Volume{10fa5803-44f7-4fc8-b23d-28beeb56178d}\ () (Fixed) (Total:0.96 GB) (Free:0.09 GB) NTFS
\\?\Volume{117b0fd1-da2c-436f-b053-b9c161d8602e}\ () (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: BB25F9B2)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-05-2025
Ran by Dell (administrator) on DESKTOP-0LLDMOB (Dell Inc. Latitude 5310) (08-05-2025 15:19:29)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHeciSvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (MEDIAN s.r.o.) [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSvc64.exe [1774584 2021-02-18] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [454904 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Spotify] => C:\Users\Dell\AppData\Roaming\Spotify\Spotify.exe [36320584 2024-10-09] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4045880 2025-05-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172920 2025-03-05] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON SIDM BS64MonitorB: C:\WINDOWS\system32\EBPMONB.DLL [108032 2024-10-13] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [58112 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.85\Installer\chrmstp.exe [2025-04-11] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\Installer\chrmstp.exe [2025-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {516CC2C4-C12C-4B7C-BAF7-CAE1242BA5D2} - System32\Tasks\AudioHUBtest => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [276480 2024-04-17] (MEDIAN s.r.o.) [File not signed]
Task: {9A9D620B-91FF-42B4-8F67-A75A42457223} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5B20AD14-176D-4409-A0BE-B66A951C2DD7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {BC065279-C46B-4C32-AC86-4EA36EF69215} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8702256 2025-04-25] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C47961C0-E92C-4670-B595-BE040717A5E6} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286648 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {DB794F9D-8641-4835-A119-F54C5B8F5E60} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0AB4D7E6-FDB1-4B19-B9D8-D24502036AA2} - System32\Tasks\AvastBrowserProtectS-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {01501A60-46CB-4D64-9ECF-B93181FAC164} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {405863AE-F1D6-44D7-9253-BBADFA66BAB0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {08B5D261-AE49-4F28-AB3E-7A16D99BDDC5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem137.0.7115.0{AF1037B7-C332-4D3C-8D45-A93FD5F13967} => C:\Program Files (x86)\Google\GoogleUpdater\137.0.7115.0\updater.exe [7360096 2025-04-08] (Google LLC -> Google LLC)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {60143294-CAFA-4E20-8DE0-39F3C623E6EF} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\InitialConfiguration => {709FD5EF-7296-4154-BD3A-E9830FCFA60A} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {5B42716E-45EF-46E4-81D1-2D9BD5E4568D} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration => {0BE6820D-B667-4CB6-931B-C153A77DA895} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {F64264C8-DFE4-4350-9381-14AA66678CDA} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3254839106-4227605653-2461104676-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [682560 2025-03-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {047EE29A-A2C1-4D6F-8713-4F9BC8DD868D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {8BB115D8-C60A-4B41-A062-6A7FFBFA9EA9} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Users\Dell\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\OneDriveLauncher.exe [679232 2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{50f91ea7-7798-4e87-9d82-fe5838c12b98}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{57aacc95-08c9-4bc2-853b-f6ba13d21a3c}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}\F423D294E6475627E65647D2438373D2537484A7: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-08]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge HomePage: Default -> hxxps://seznam.cz/
Edge Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-09]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2025-05-08]
Edge Extension: (Volání přes Skype) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2024-12-11]
Edge Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-21]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
Edge Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-09]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-03]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2024-12-11]
FireFox:
========
FF DefaultProfile: tz23z2rh.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\tz23z2rh.default [2024-12-19]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\m9jjdiuy.default-release [2025-05-05]
FF Plugin: @java.com/DTPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\dtplugin\npDeployJava1.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\plugin2\npjp2.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2025-05-08]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-08]
CHR Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-23]
CHR Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2025-04-05]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2024-10-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-08]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7545648 2025-05-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [809208 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2484984 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [861432 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\elevation_service.exe [2580000 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-03-12] (Avast Software s.r.o. -> AVAST Software)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2024-11-25] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123304 2025-02-24] (The Document Foundation -> The Document Foundation)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12114224 2024-12-10] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ZTHELPER; C:\WINDOWS\System32\zthelper.dll [146096 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [21088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244320 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390720 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297568 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [279624 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [569920 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92224 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72256 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [881728 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1272392 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [391232 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [569344 2024-11-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-11-22] (Microsoft Corporation) [File not signed]
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-31] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602392 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiMan\WiMan.sys [171960 2024-08-12] (Intel Corporation -> Intel Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManH\WiManH.sys [184248 2024-08-12] (Intel Corporation -> Intel Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_8d863c975b4367df\wini3ctarget.sys [79288 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-05-08 15:20 - 000024047 _____ C:\Users\Dell\Desktop\FRST.txt
2025-05-08 15:18 - 2025-05-08 15:18 - 002405376 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2025-05-08 15:06 - 2025-05-08 15:06 - 000679834 _____ C:\WINDOWS\system32\perfh005.dat
2025-05-08 15:06 - 2025-05-08 15:06 - 000145634 _____ C:\WINDOWS\system32\perfc005.dat
2025-05-07 19:50 - 2025-05-08 13:22 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-05-07 17:44 - 2025-05-07 17:44 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek (1).pdf
2025-05-07 17:04 - 2025-05-07 17:04 - 000219274 _____ C:\Users\Dell\Desktop\Ceník služeb.pdf
2025-05-07 17:03 - 2025-05-07 17:03 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek.pdf
2025-05-07 16:57 - 2025-05-07 16:57 - 000346726 _____ C:\Users\Dell\Desktop\Ceník (1).pdf
2025-05-06 14:39 - 2025-05-06 14:39 - 000194704 _____ C:\Users\Dell\Desktop\205001048901 (1).pdf
2025-05-06 14:37 - 2025-05-06 14:37 - 000238479 _____ C:\Users\Dell\Desktop\231501983676.pdf
2025-05-06 14:07 - 2025-05-06 14:07 - 000219274 _____ C:\Users\Dell\Desktop\EE_CSL_O36_250501.pdf
2025-05-06 13:59 - 2025-05-06 13:59 - 000423718 _____ C:\Users\Dell\Downloads\Ceník.pdf
2025-05-05 18:46 - 2025-05-05 18:46 - 000247617 _____ C:\Users\Dell\Desktop\Zelena karta.pdf
2025-05-05 17:14 - 2025-05-05 17:14 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-04-26 18:19 - 2025-04-26 18:19 - 000001475 _____ C:\Users\Public\Desktop\Url Monitor.lnk
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:13 - 2025-04-26 18:13 - 013525944 _____ C:\Users\Dell\Downloads\AudioHUBWwwAccessConnector.exe
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-04-24 20:12 - 2025-05-08 15:19 - 000000000 ____D C:\FRST
2025-04-24 20:12 - 2025-04-24 20:12 - 000000000 ___HD C:\$AV_ASW
2025-04-11 13:57 - 2025-04-11 13:57 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000000000 ____D C:\Program Files\Google
2025-04-11 13:56 - 2025-04-11 13:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-04-10 18:39 - 2025-04-10 18:39 - 000000000 ____D C:\inetpub
2025-04-08 19:24 - 2025-04-08 19:24 - 000000000 ____D C:\Users\Dell\Documents\Doc Scan PDF Scanner
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-03-09 09:10 - 000677888 _____ C:\WINDOWS\SysWOW64\tempResults.db
2025-05-08 15:19 - 2024-11-28 17:29 - 000000000 ____D C:\Users\WsiAccount
2025-05-08 15:18 - 2025-03-09 08:09 - 000000000 ____D C:\AAA
2025-05-08 15:13 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-08 15:06 - 2024-11-23 10:50 - 001603798 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-05-08 15:06 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-05-08 14:59 - 2025-03-15 15:45 - 000000000 ____D C:\WINDOWS\Minidump
2025-05-08 14:59 - 2024-11-22 19:12 - 000050078 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-05-08 14:59 - 2024-11-22 18:26 - 000000000 ____D C:\Users\Dell
2025-05-08 14:59 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-05-08 14:58 - 2024-11-22 19:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-05-08 14:58 - 2024-11-22 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-05-08 14:58 - 2024-10-07 06:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-05-08 14:58 - 2024-05-06 07:32 - 002695447 ____N C:\WINDOWS\Minidump\050825-10593-01.dmp
2025-05-08 14:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-05-08 14:58 - 2023-09-21 09:57 - 000012288 ___SH C:\DumpStack.log.tmp
2025-05-08 13:37 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-05-08 13:03 - 2025-03-12 11:55 - 000000000 ____D C:\ProgramData\Avast Software
2025-05-07 20:20 - 2024-04-01 09:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-05-07 19:28 - 2024-05-06 07:32 - 002643975 ____N C:\WINDOWS\Minidump\050725-11625-01.dmp
2025-05-07 17:25 - 2024-05-06 07:32 - 002504417 ____N C:\WINDOWS\Minidump\050725-11531-01.dmp
2025-05-07 16:43 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-07 16:42 - 2025-02-07 09:39 - 000003574 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-05-07 16:42 - 2024-11-22 19:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-05-07 16:42 - 2024-11-22 19:13 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2023-09-21 10:23 - 000002378 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-06 15:56 - 2024-05-06 07:32 - 002683629 ____N C:\WINDOWS\Minidump\050625-12171-01.dmp
2025-05-06 14:30 - 2024-05-06 07:32 - 002462489 ____N C:\WINDOWS\Minidump\050625-10078-01.dmp
2025-05-06 10:02 - 2023-09-21 10:22 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache
2025-05-06 07:56 - 2025-02-14 18:47 - 000000000 ____D C:\Users\Dell\AppData\Local\CrashDumps
2025-05-05 17:55 - 2024-11-22 19:10 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-05-05 17:55 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-05-05 17:14 - 2025-03-12 21:02 - 000021088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 001272392 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000881728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000569920 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000391232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000390720 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000297568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000279624 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000244320 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000092224 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000085088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000072256 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-05-05 17:14 - 2024-12-22 06:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2025-05-04 15:18 - 2023-09-21 10:21 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2025-05-04 15:07 - 2023-09-21 09:58 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-04 15:07 - 2023-09-21 09:58 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-01 19:41 - 2025-03-12 11:58 - 000000000 ____D C:\Users\Dell\AppData\Local\AVAST Software
2025-04-26 18:19 - 2025-03-09 08:08 - 000003590 _____ C:\WINDOWS\system32\Tasks\AudioHUBtest
2025-04-26 15:58 - 2023-09-21 10:00 - 000000000 ____D C:\ProgramData\Packages
2025-04-26 15:55 - 2024-11-22 19:10 - 000456640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-04-26 15:53 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-04-26 14:44 - 2024-11-22 19:11 - 003369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-04-25 18:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-04-23 17:54 - 2025-03-12 12:04 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-04-23 17:54 - 2025-03-12 12:04 - 000002369 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-04-18 14:07 - 2024-12-09 09:54 - 000000000 ____D C:\Users\Dell\TapinRadio
2025-04-11 13:56 - 2024-10-07 06:54 - 000000000 ____D C:\Program Files (x86)\Google
2025-04-10 18:39 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-04-08 19:27 - 2023-09-21 10:23 - 000000000 ____D C:\Users\Dell\AppData\Local\PlaceholderTileLogoFolder
2025-04-08 19:25 - 2025-01-19 17:45 - 000000000 ____D C:\Users\Dell\Desktop\UROLOGIE
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Dell (08-05-2025 15:20:53)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) (2024-11-23 08:43:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3254839106-4227605653-2461104676-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3254839106-4227605653-2461104676-503 - Limited - Disabled)
Dell (S-1-5-21-3254839106-4227605653-2461104676-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3254839106-4227605653-2461104676-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3254839106-4227605653-2461104676-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3254839106-4227605653-2461104676-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AudioHUBWwwAccessConnector 1.0.0.2320 (HKLM-x32\...\AudioHUBWwwAccessConnector) (Version: 1.0.0.2320 - MEDIAN s.r.o.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 134.0.29548.179 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Eclipse Temurin JRE with Hotspot 11.0.26+4 (x64) (HKLM\...\{45E29707-E9DD-4E9C-835C-A60940D58BF7}) (Version: 11.0.26.4 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x64) (HKLM\...\{35151E48-24F7-4295-82D2-F2B3C700F9A6}) (Version: 8.0.442.6 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x86) (HKLM-x32\...\{93A18363-B57B-4859-9F13-58DEED9E6EC0}) (Version: 8.0.442.6 - Eclipse Adoptium)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.4.0.27683 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.85 - Google LLC)
IrfanView 4.70 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 441 (64-bit) (HKLM\...\{77724AE4-039E-4CA4-87B4-2F64180441F0}) (Version: 8.0.4410.7 - Oracle Corporation)
LibreOffice 25.2.1.2 (HKLM\...\{C155ED9C-4F2D-408C-BF76-07CB2B126B25}) (Version: 25.2.1.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.50 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 136.0.1 (x64 cs)) (Version: 136.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.8.0 (x64 cs)) (Version: 128.8.0 - Mozilla)
Program pro odinstalaci nástroje tiskárny EPSON LX-1310 ESC/P (HKLM\...\EPSON LX-1310 ESC/P) (Version: - SEIKO EPSON Corporation)
Program pro odinstalaci nástroje tiskárny EPSON LX-300+II ESC/P (HKLM\...\EPSON LX-300+II ESC/P) (Version: - SEIKO EPSON Corporation)
Skype 8.138 (HKLM-x32\...\{1BC908B3-778D-4B6B-84BE-75562413506C}) (Version: 8.138.0.203 - Skype Technologies S.A.)
Skype verze 8.138 (HKLM-x32\...\Skype_is1) (Version: 8.138 - Skype Technologies S.A.) Hidden
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Spotify (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
TapinRadio 2.15.98.8 (x64) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.48799 - TeamViewer)
TomTom MyDrive Connect 4.4.4.5059 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.4.5059 - TomTom)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Chrome apps:
============
KVIFF.TV (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b3c7e3d83561e6c703e38f6b919f3b28) (Version: 1.0 - Google\Chrome)
Správce hesel Google (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b760b48ad42951aaa3e37e2789e2f196) (Version: 1.0 - Google\Chrome)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
9390SimonKnuth.ScannerforWindows10 -> C:\Program Files\WindowsApps\9390SimonKnuth.ScannerforWindows10_3.2.9.0_x64__69n05hp4v3s90 [2025-04-08] (Simon Knuth)
Akce kliknutím (Preview) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
Doc Scan PDF Scanner -> C:\Program Files\WindowsApps\53058betterapp.AnyScan_1.2.4.0_x64__90ct3cgs7yy6a [2025-04-08] (better app)
Escanear Fácil -> C:\Program Files\WindowsApps\642Jabasoft.EscanearFcil_3.1.6.0_x64__3jhqbycpkrcae [2025-05-01] (Jabasoft)
Intel(R) Management and Security Status -> C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2405.6.0.0_x64__8j3eq9eme6ctt [2025-01-05] (INTEL CORP) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe [2025-04-23] (Microsoft Corporation)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-04-25] (Spotify AB) [Startup Task]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2024-11-09] (Waves Audio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2517.4.0_x64__cv1g1gvanyjgm [2025-05-04] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2024-10-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Desktop\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_iepmbhehofohhofgnnmaicegcempfonb\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2025-05-08 14:59 - 2025-05-08 14:59 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2025-05-08 14:59 - 2025-05-08 14:59 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2020-09-21 10:39 - 2020-09-21 10:39 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_441\bin\ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_441\bin\jp2ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-11.0.26.4-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\15260264710321002627\133910165066998143.jpg
HKU\S-1-5-21-3254839106-4227605653-2461104676-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet 2: Intel(R) Ethernet Connection (10) I219-V -> e1d68x64.sys
Síťové připojení Bluetooth 3: Bluetooth Device (Personal Area Network) #3 -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FoxitReaderUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService135.0.7023.0 => 2
MSCONFIG\Services: GoogleUpdaterService135.0.7023.0 => 2
MSCONFIG\Services: iaStorAfsService => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LibreOfficeMaintenance => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PC Cleaner Service => 3
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WavesSysSvc => 2
MSCONFIG\Services: WMIRegistrationService => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DB438734-CD19-438A-92FD-1A63DED54934}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0C59FE4-025D-4CDE-AF51-EE56BDCEFEFF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{AADD9B49-81F8-4105-BC82-65D7F46A1877}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0757C34E-F48E-4626-BB07-CF0A171619EE}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3D5A135E-EDBA-4084-9DAA-7C738C3DB2C2}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BD15058-88EB-48CD-A7FC-EF34E778BF5C}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{371CCB7C-6C1C-497D-B82F-DF25FC36B997}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{042246A8-0AEB-4199-8AFE-02BEF7B252C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [{9974C2F3-261A-4A0C-BF1A-F23D4912B3CE}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{D130D16E-48AF-44D8-AFFB-B7939A74C342}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{22CBC9DB-B798-4F2B-B206-D6681FB6A80E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5549E25C-9938-41A0-BAB2-D277A703F33D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73C88CDA-B824-4642-88EA-96C7C58558AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F322EE-537E-49C1-9DC7-817A81D37B96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F33B8620-3E52-4933-9FE2-34BDCC380C6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3376012-51EF-4DCB-AD70-508161974949}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A30FBBD-4A55-4D62-9330-7E2D2135E997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{65FF18F4-411C-4385-A639-EFE3165FA1DC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F29A971D-8D4B-4111-8FB7-097BF4BA5440}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{2ABF019E-22CE-49A4-B76A-EE20C09BD699}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FA3DBA3-BEAE-4C52-80BA-8F1FA4CE1E6E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1685ABFE-07B2-4F8C-8604-254C34B05428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7622FA9D-3E03-46B9-B42D-759EECB623F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D15D197-E73E-4B15-880C-101C97591F22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33092260-FDA6-4D1F-926D-61A3A785F6C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFDB2154-3708-43FC-865E-E326B9A9977A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F122C1AF-E4C0-409D-BFD6-AA313F048DD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BE06391-42B4-4703-A2F5-CD855C9AAE62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36697136-DC15-45CB-96A0-0A1170710180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0D88CD7-5963-4159-BE6A-0BD92D851F95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8821FBA3-6A9B-420F-84E0-DD347A8E7979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F895DB4-95F3-496F-A009-B841042B76FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:237.4 GB) (Free:169.27 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/08/2025 02:58:50 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: svchost.exe_NgcCtnrSvc, verze: 10.0.26100.1150, časové razítko: 0xfdace0d9
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.26100.3037, časové razítko: 0xc4a5da14
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d843d
ID chybujícího procesu: 0x112c
Čas spuštění chybující aplikace: 0x1dbc018f139be89
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID sestavy: ed779354-e9e7-494f-8cda-63c0b7374887
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/07/2025 08:10:13 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 135.0.7049.85 programu chrome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (05/06/2025 07:56:30 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-0LLDMOB)
Description: Název chybující aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe, verze: 1.0.0.2320, časové razítko: 0x661f8f3c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.3912, časové razítko: 0xc16c5511
Kód výjimky: 0xe0434352
Posun chyby: 0x0015da34
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0x1dbbe4b7ebc47cc
Cesta k chybující aplikaci: C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 6849efd0-9785-4559-910a-4a8c26a96738
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/06/2025 07:56:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ApplicationException
na System.Threading.Mutex.ReleaseMutex()
na AudioHUB.Processing.WwwAccessConnectorCommon.WatchingApp.WatchingMutex.Wait(System.Action)
na AudioHUB.Processing.WwwAccessConnectorUrlMonitor.Program.Main()
Error: (05/06/2025 07:46:30 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12094ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:21 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12110ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:15 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5532, identifikátor PID ProfSvc: 2244.
Error: (05/05/2025 05:11:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12078ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (05/08/2025 02:58:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NgcCtnrSvc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (05/08/2025 02:58:47 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffffcde912ecce38, 0x0000000000000000, 0xfffff807dc9b0791, 0x0000000000000002)C:\WINDOWS\Minidump\050825-10593-01.dmp2f8a2212-d148-4b17-be54-2dee5de2f696
Error: (05/08/2025 02:58:41 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.
Error: (05/08/2025 02:58:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:53:28, 08.05.2025) bylo neočekávané.
Error: (05/08/2025 02:00:37 PM) (Source: IntcOED) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/08/2025 01:37:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 08:20:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0LLDMOB)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 07:28:15 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffff841071fef968, 0x0000000000000000, 0xfffff80575db0791, 0x0000000000000002)C:\WINDOWS\Minidump\050725-11625-01.dmp0ee59ca8-75a7-40a1-a879-b36e672599ab
CodeIntegrity:
===============
Date: 2025-03-12 13:55:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2025-03-12 13:54:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 03/13/2023
Motherboard: Dell Inc. 0D2CKD
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 65%
Total physical RAM: 7917.94 MB
Available physical RAM: 2698.15 MB
Total Virtual: 8429.94 MB
Available Virtual: 2988.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.4 GB) (Free:169.27 GB) (Model: SSDPEMKF256G8 NVMe INTEL 256GB) (Protected) NTFS
\\?\Volume{10fa5803-44f7-4fc8-b23d-28beeb56178d}\ () (Fixed) (Total:0.96 GB) (Free:0.09 GB) NTFS
\\?\Volume{117b0fd1-da2c-436f-b053-b9c161d8602e}\ () (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: BB25F9B2)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-05-2025
Ran by Dell (administrator) on DESKTOP-0LLDMOB (Dell Inc. Latitude 5310) (08-05-2025 15:19:29)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHeciSvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (MEDIAN s.r.o.) [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSvc64.exe [1774584 2021-02-18] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [454904 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Spotify] => C:\Users\Dell\AppData\Roaming\Spotify\Spotify.exe [36320584 2024-10-09] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4045880 2025-05-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172920 2025-03-05] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON SIDM BS64MonitorB: C:\WINDOWS\system32\EBPMONB.DLL [108032 2024-10-13] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [58112 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.85\Installer\chrmstp.exe [2025-04-11] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\Installer\chrmstp.exe [2025-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {516CC2C4-C12C-4B7C-BAF7-CAE1242BA5D2} - System32\Tasks\AudioHUBtest => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [276480 2024-04-17] (MEDIAN s.r.o.) [File not signed]
Task: {9A9D620B-91FF-42B4-8F67-A75A42457223} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5B20AD14-176D-4409-A0BE-B66A951C2DD7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {BC065279-C46B-4C32-AC86-4EA36EF69215} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8702256 2025-04-25] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C47961C0-E92C-4670-B595-BE040717A5E6} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286648 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {DB794F9D-8641-4835-A119-F54C5B8F5E60} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0AB4D7E6-FDB1-4B19-B9D8-D24502036AA2} - System32\Tasks\AvastBrowserProtectS-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {01501A60-46CB-4D64-9ECF-B93181FAC164} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {405863AE-F1D6-44D7-9253-BBADFA66BAB0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {08B5D261-AE49-4F28-AB3E-7A16D99BDDC5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem137.0.7115.0{AF1037B7-C332-4D3C-8D45-A93FD5F13967} => C:\Program Files (x86)\Google\GoogleUpdater\137.0.7115.0\updater.exe [7360096 2025-04-08] (Google LLC -> Google LLC)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {60143294-CAFA-4E20-8DE0-39F3C623E6EF} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\InitialConfiguration => {709FD5EF-7296-4154-BD3A-E9830FCFA60A} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {5B42716E-45EF-46E4-81D1-2D9BD5E4568D} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration => {0BE6820D-B667-4CB6-931B-C153A77DA895} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {F64264C8-DFE4-4350-9381-14AA66678CDA} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3254839106-4227605653-2461104676-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [682560 2025-03-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {047EE29A-A2C1-4D6F-8713-4F9BC8DD868D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {8BB115D8-C60A-4B41-A062-6A7FFBFA9EA9} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Users\Dell\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\OneDriveLauncher.exe [679232 2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{50f91ea7-7798-4e87-9d82-fe5838c12b98}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{57aacc95-08c9-4bc2-853b-f6ba13d21a3c}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}\F423D294E6475627E65647D2438373D2537484A7: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-08]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge HomePage: Default -> hxxps://seznam.cz/
Edge Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-09]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2025-05-08]
Edge Extension: (Volání přes Skype) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2024-12-11]
Edge Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-21]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
Edge Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-09]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-03]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2024-12-11]
FireFox:
========
FF DefaultProfile: tz23z2rh.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\tz23z2rh.default [2024-12-19]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\m9jjdiuy.default-release [2025-05-05]
FF Plugin: @java.com/DTPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\dtplugin\npDeployJava1.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\plugin2\npjp2.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2025-05-08]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-08]
CHR Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-23]
CHR Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2025-04-05]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2024-10-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-08]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7545648 2025-05-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [809208 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2484984 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [861432 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\elevation_service.exe [2580000 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-03-12] (Avast Software s.r.o. -> AVAST Software)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2024-11-25] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123304 2025-02-24] (The Document Foundation -> The Document Foundation)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12114224 2024-12-10] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ZTHELPER; C:\WINDOWS\System32\zthelper.dll [146096 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [21088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244320 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390720 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297568 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [279624 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [569920 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92224 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72256 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [881728 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1272392 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [391232 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [569344 2024-11-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-11-22] (Microsoft Corporation) [File not signed]
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-31] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602392 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiMan\WiMan.sys [171960 2024-08-12] (Intel Corporation -> Intel Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManH\WiManH.sys [184248 2024-08-12] (Intel Corporation -> Intel Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_8d863c975b4367df\wini3ctarget.sys [79288 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-05-08 15:20 - 000024047 _____ C:\Users\Dell\Desktop\FRST.txt
2025-05-08 15:18 - 2025-05-08 15:18 - 002405376 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2025-05-08 15:06 - 2025-05-08 15:06 - 000679834 _____ C:\WINDOWS\system32\perfh005.dat
2025-05-08 15:06 - 2025-05-08 15:06 - 000145634 _____ C:\WINDOWS\system32\perfc005.dat
2025-05-07 19:50 - 2025-05-08 13:22 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-05-07 17:44 - 2025-05-07 17:44 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek (1).pdf
2025-05-07 17:04 - 2025-05-07 17:04 - 000219274 _____ C:\Users\Dell\Desktop\Ceník služeb.pdf
2025-05-07 17:03 - 2025-05-07 17:03 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek.pdf
2025-05-07 16:57 - 2025-05-07 16:57 - 000346726 _____ C:\Users\Dell\Desktop\Ceník (1).pdf
2025-05-06 14:39 - 2025-05-06 14:39 - 000194704 _____ C:\Users\Dell\Desktop\205001048901 (1).pdf
2025-05-06 14:37 - 2025-05-06 14:37 - 000238479 _____ C:\Users\Dell\Desktop\231501983676.pdf
2025-05-06 14:07 - 2025-05-06 14:07 - 000219274 _____ C:\Users\Dell\Desktop\EE_CSL_O36_250501.pdf
2025-05-06 13:59 - 2025-05-06 13:59 - 000423718 _____ C:\Users\Dell\Downloads\Ceník.pdf
2025-05-05 18:46 - 2025-05-05 18:46 - 000247617 _____ C:\Users\Dell\Desktop\Zelena karta.pdf
2025-05-05 17:14 - 2025-05-05 17:14 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-04-26 18:19 - 2025-04-26 18:19 - 000001475 _____ C:\Users\Public\Desktop\Url Monitor.lnk
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:13 - 2025-04-26 18:13 - 013525944 _____ C:\Users\Dell\Downloads\AudioHUBWwwAccessConnector.exe
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-04-24 20:12 - 2025-05-08 15:19 - 000000000 ____D C:\FRST
2025-04-24 20:12 - 2025-04-24 20:12 - 000000000 ___HD C:\$AV_ASW
2025-04-11 13:57 - 2025-04-11 13:57 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000000000 ____D C:\Program Files\Google
2025-04-11 13:56 - 2025-04-11 13:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-04-10 18:39 - 2025-04-10 18:39 - 000000000 ____D C:\inetpub
2025-04-08 19:24 - 2025-04-08 19:24 - 000000000 ____D C:\Users\Dell\Documents\Doc Scan PDF Scanner
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-03-09 09:10 - 000677888 _____ C:\WINDOWS\SysWOW64\tempResults.db
2025-05-08 15:19 - 2024-11-28 17:29 - 000000000 ____D C:\Users\WsiAccount
2025-05-08 15:18 - 2025-03-09 08:09 - 000000000 ____D C:\AAA
2025-05-08 15:13 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-08 15:06 - 2024-11-23 10:50 - 001603798 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-05-08 15:06 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-05-08 14:59 - 2025-03-15 15:45 - 000000000 ____D C:\WINDOWS\Minidump
2025-05-08 14:59 - 2024-11-22 19:12 - 000050078 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-05-08 14:59 - 2024-11-22 18:26 - 000000000 ____D C:\Users\Dell
2025-05-08 14:59 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-05-08 14:58 - 2024-11-22 19:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-05-08 14:58 - 2024-11-22 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-05-08 14:58 - 2024-10-07 06:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-05-08 14:58 - 2024-05-06 07:32 - 002695447 ____N C:\WINDOWS\Minidump\050825-10593-01.dmp
2025-05-08 14:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-05-08 14:58 - 2023-09-21 09:57 - 000012288 ___SH C:\DumpStack.log.tmp
2025-05-08 13:37 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-05-08 13:03 - 2025-03-12 11:55 - 000000000 ____D C:\ProgramData\Avast Software
2025-05-07 20:20 - 2024-04-01 09:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-05-07 19:28 - 2024-05-06 07:32 - 002643975 ____N C:\WINDOWS\Minidump\050725-11625-01.dmp
2025-05-07 17:25 - 2024-05-06 07:32 - 002504417 ____N C:\WINDOWS\Minidump\050725-11531-01.dmp
2025-05-07 16:43 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-07 16:42 - 2025-02-07 09:39 - 000003574 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-05-07 16:42 - 2024-11-22 19:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-05-07 16:42 - 2024-11-22 19:13 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2023-09-21 10:23 - 000002378 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-06 15:56 - 2024-05-06 07:32 - 002683629 ____N C:\WINDOWS\Minidump\050625-12171-01.dmp
2025-05-06 14:30 - 2024-05-06 07:32 - 002462489 ____N C:\WINDOWS\Minidump\050625-10078-01.dmp
2025-05-06 10:02 - 2023-09-21 10:22 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache
2025-05-06 07:56 - 2025-02-14 18:47 - 000000000 ____D C:\Users\Dell\AppData\Local\CrashDumps
2025-05-05 17:55 - 2024-11-22 19:10 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-05-05 17:55 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-05-05 17:14 - 2025-03-12 21:02 - 000021088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 001272392 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000881728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000569920 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000391232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000390720 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000297568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000279624 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000244320 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000092224 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000085088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000072256 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-05-05 17:14 - 2024-12-22 06:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2025-05-04 15:18 - 2023-09-21 10:21 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2025-05-04 15:07 - 2023-09-21 09:58 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-04 15:07 - 2023-09-21 09:58 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-01 19:41 - 2025-03-12 11:58 - 000000000 ____D C:\Users\Dell\AppData\Local\AVAST Software
2025-04-26 18:19 - 2025-03-09 08:08 - 000003590 _____ C:\WINDOWS\system32\Tasks\AudioHUBtest
2025-04-26 15:58 - 2023-09-21 10:00 - 000000000 ____D C:\ProgramData\Packages
2025-04-26 15:55 - 2024-11-22 19:10 - 000456640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-04-26 15:53 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-04-26 14:44 - 2024-11-22 19:11 - 003369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-04-25 18:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-04-23 17:54 - 2025-03-12 12:04 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-04-23 17:54 - 2025-03-12 12:04 - 000002369 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-04-18 14:07 - 2024-12-09 09:54 - 000000000 ____D C:\Users\Dell\TapinRadio
2025-04-11 13:56 - 2024-10-07 06:54 - 000000000 ____D C:\Program Files (x86)\Google
2025-04-10 18:39 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-04-08 19:27 - 2023-09-21 10:23 - 000000000 ____D C:\Users\Dell\AppData\Local\PlaceholderTileLogoFolder
2025-04-08 19:25 - 2025-01-19 17:45 - 000000000 ____D C:\Users\Dell\Desktop\UROLOGIE
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
