VIRY.CZ

Dobrý den. Před pár dny když jsem zapnul notebook tak se nespustil ale naskočila obrazovka s textem Když jsem kliknul na ENTER tak se zobrazilo další okno (Další obrázek mi tu nelze nějak vložit). Byla na něm nabídka "Memory test"_"Hard drive check"_Language"_"Exit". Zvolil jsem "Memory test". Když test skončil vypsalo "Memory Quick Check : PASSED" čili kontrola úspěšná. Vrátil jsem se do Menu a dal Exit jenomže znovu nic. Dal jsem teda zkontrolovat pevný disk ale vypsalo mi že se nenašel. Tak jsem zkusil opět kontrolu paměti a pak ještě jednou a až pak se notebook spustil.
Když jsem notebook pak zavřel a chtěl opět za nějakou dobu spustit tak to opět nešlo.
Přikládám log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by HP (administrator) on HP-PC (Hewlett-Packard HP EliteBook 8570p) (11-10-2025 19:08:28)
Running from C:\Users\HP\Desktop\FRST64.exe
Loaded Profiles: HP
Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
(C:\Program Files (x86)\FormatFactory\net_updater64.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\luminati\brightdata.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(DOMIT LIMITED -> Domit UK LTD) C:\Users\HP\AppData\Local\MP3SkypeRecorder\app-6.1.5\MP3SkypeRecorder6.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <22>
(explorer.exe ->) (Hewlett-Packard Company -> ) C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe
(explorer.exe ->) (Irfan Skiljan -> Irfan Skiljan) C:\Program Files\IrfanView\i_view64.exe <2>
(explorer.exe ->) (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTM64_N.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Viber Media S.à r.l. -> Viber Media S.à r.l.) C:\Users\HP\AppData\Local\Viber\Viber.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\net_updater64.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\AgentService.exe
(services.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(taskeng.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(taskeng.exe ->) (MiniTool Software Limited -> ) C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTM64_N.EXE [247736 2011-04-06] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [845992 2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [electron.app.Messenger for Desktop] => C:\Users\HP\AppData\Local\Programs\messengerfordesktop\Messenger for Desktop.exe (No File)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4140448 2023-03-08] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45741280 2025-07-18] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172896 2025-04-29] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [MP3 Skype Recorder 6] => C:\Users\HP\AppData\Local\MP3SkypeRecorder\MP3SkypeRecorder6.exe [486344 2021-03-22] (DOMIT LIMITED -> Domit UK LTD)
HKLM\...\Windows x64\Print Processors\MIPR64_N: C:\Windows\System32\spool\prtprocs\x64\MIPR64_N.DLL [56832 2011-03-04] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\Windows\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\MLMN64_N: C:\Windows\system32\MLMN64_N.DLL [115200 2011-03-29] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2025-01-12] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Button Manager.lnk [2019-11-06]
ShortcutTarget: HP Button Manager.lnk -> C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe (Hewlett-Packard Company -> )
BootExecute:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2DD315DE-222C-440E-9044-8E0D3C4F5DEF} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {2E03E3D2-964F-491A-B074-09AD84CA6E40} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {7E739240-E306-4CA1-8A98-D178D18724BC} - System32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF} => C:\Program Files (x86)\Messenger for Desktop\Messenger.exe [47730823 2015-06-13] () [File not signed]
Task: {0EA30D39-EEE3-468D-A957-40665EDF6AA3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {7136F75E-BC48-4EEF-A74D-75166E132CE5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {230A73F5-2F09-4B87-8266-F9EC085E1B64} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [9072352 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {70105C68-17FA-4AB0-A5CB-DF779C4C6C2F} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5573800 2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {2AEF0F22-8243-479C-999F-8ADAD28FB8CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {F657A011-92F6-4260-ACC5-D560D1539EFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-07-18] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {BABEDB43-2C68-48AA-8AD8-86A8912B7887} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6140640 2025-07-18] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "64a706f7-6c4d-48de-9102-ced1924fe0c3" --version "6.38.0.11537" --silent
Task: {34D45D91-E8AC-4797-AA00-4ABA81016767} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [39575776 2025-07-18] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {A46F933E-B6EB-4AFF-AC5C-F579D11938F3} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [969208 2017-07-17] (HP Inc. -> HP)
Task: {B4BCFD74-877B-4CB9-9D68-D880B765A58F} - System32\Tasks\MiniTool ShadowMaker => C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe [1034680 2025-04-15] (MiniTool Software Limited -> )
Task: {247FFE56-D51F-48B0-8BC1-065C51C38416} - System32\Tasks\Opera scheduled assistant Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {0F78A616-F10B-4C7B-A3DC-A67B6A63A918} - System32\Tasks\Opera scheduled Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20944061-44D7-472A-B933-2B215F7CDB28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}: [DhcpDomain] home
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2836453333313: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2930334030373: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpDomain] WiFi-Repeater
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564F5548747: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpDomain] WiFi-Repeater

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-03-31] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2025-09-29] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2025-10-11]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://forum.elektrolab.eu; hxxps://hkfwc.kilimanjarospot.top; hxxps://messages.google.com; hxxps://ooxxx.com; hxxps://svetelektro.com; hxxps://web.whatsapp.com; hxxps://www.elektroda.pl; hxxps://www.svarecky-obchod.cz
CHR Extension: (Seznam Doplněk – Email) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2025-02-11]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-09-24]
CHR Extension: (Rizikové weby) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddkbojnnljflgkjchlpjlhpfhhbeefk [2023-10-25]
CHR Extension: (Plná Peňaženka Líštička) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbilggjmecggkclacdgebaielibaifdc [2025-07-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-01]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-10-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-10-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3 [2025-10-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-17]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2025-10-10]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-671632164-325227383-1259036689-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable [2025-10-11]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2024-08-21]
OPR Extension: (Opera Wallet) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2025-01-16]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-10-02] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7785640 2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1036456 2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1089704 2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1080544 2025-07-18] (Gen Digital Inc. -> Gen Digital Inc.)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965952 2017-07-17] (HP Inc. -> HP)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 luminati_net_updater_win_formatfactory_pcfreetime_com; C:\Program Files (x86)\FormatFactory\net_updater64.exe [9756752 2023-02-14] (Bright Data Ltd -> BrightData Ltd. (certified))
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-03-31] (McAfee, LLC -> McAfee, LLC)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [760248 2025-04-15] (MiniTool Software Limited -> )
R2 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [225208 2025-04-15] (MiniTool Software Limited -> )
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [21088 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [244832 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [390752 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [299616 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [85600 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [29792 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [284768 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [574048 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92232 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71240 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [876104 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1282632 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\Windows\System32\drivers\aswStm.sys [201824 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [391776 2025-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2021-10-04] (Bitdefender SRL -> Bitdefender)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [3495680 2016-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R1 RsProxy; C:\Windows\system32\drivers\RsProxy.sys [15976 2019-11-06] (Realtek Semiconductor Corp -> )
S3 ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [261640 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\WinRAR.lnk"
Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\Thunderbird.lnk"
Error Reading file: "C:\ProgramData\Desktop\Skype.lnk"
Error Reading file: "C:\ProgramData\Desktop\Revo Uninstaller.lnk"
Error Reading file: "C:\ProgramData\Desktop\ProfiCAD.lnk"
Error Reading file: "C:\ProgramData\Desktop\PredatorCreator.lnk"
Error Reading file: "C:\ProgramData\Desktop\OpenOffice 4.1.15.lnk"
Error Reading file: "C:\ProgramData\Desktop\MiniTool ShadowMaker.lnk"
Error Reading file: "C:\ProgramData\Desktop\MiniTool Partition Wizard.lnk"
Error Reading file: "C:\ProgramData\Desktop\HP Webcam HD 2300 Control Center.lnk"
Error Reading file: "C:\ProgramData\Desktop\Google Chrome.lnk"
Error Reading file: "C:\ProgramData\Desktop\DjVu Viewer.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\CDBurnerXP.lnk"
Error Reading file: "C:\ProgramData\Desktop\CCleaner.lnk"
Error Reading file: "C:\ProgramData\Desktop\Brother Creative Center.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast Free Antivirus.lnk"
Error Reading file: "C:\ProgramData\Desktop\Ashampoo Burning Studio FREE.lnk"
Error Reading file: "C:\ProgramData\Desktop\amcap.lnk"
Error Reading file: "C:\ProgramData\Desktop\Acrobat Reader.lnk"
2025-10-11 19:08 - 2025-10-11 19:10 - 000028231 _____ C:\Users\HP\Desktop\FRST.txt
2025-10-11 19:05 - 2025-10-11 19:05 - 002442752 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2025-10-11 17:50 - 2025-10-11 17:50 - 001250263 _____ C:\Users\HP\Documents\záložky_11.10.25(Záloha).html
2025-10-09 11:28 - 2025-10-09 11:29 - 000000000 ____D C:\Users\HP\Desktop\Vypínač(Lukáš Vorek)
2025-10-06 16:45 - 2025-10-06 16:45 - 000000000 ____D C:\Users\HP\AppData\Local\uTorrent
2025-09-30 09:40 - 2025-09-30 09:40 - 000018325 _____ C:\Users\HP\Documents\Odkazy(Narcisti+jiné).odt
2025-09-24 19:44 - 2025-09-25 06:06 - 000026459 _____ C:\Users\HP\Desktop\Programovatelné dálkové ovládání Model L336.odt
2025-09-23 12:36 - 2025-09-23 12:35 - 000322216 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe
2025-09-11 07:19 - 2025-09-11 07:21 - 000000000 ____D C:\Users\HP\AppData\Roaming\Seznam Browser

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-11 19:09 - 2024-11-19 17:56 - 000000000 ____D C:\FRST
2025-10-11 18:58 - 2019-10-25 17:12 - 000000000 ____D C:\Program Files (x86)\Google
2025-10-11 18:34 - 2019-11-04 20:24 - 000000000 ____D C:\Users\HP\Documents\ViberDownloads
2025-10-11 18:17 - 2009-07-14 06:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2025-10-11 18:17 - 2009-07-14 06:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2025-10-11 18:03 - 2010-11-21 11:27 - 000668792 _____ C:\Windows\system32\perfh005.dat
2025-10-11 18:03 - 2010-11-21 11:27 - 000141420 _____ C:\Windows\system32\perfc005.dat
2025-10-11 18:03 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2025-10-11 18:03 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2025-10-11 17:43 - 2024-05-22 17:03 - 000002762 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2025-10-11 17:43 - 2024-05-22 17:03 - 000000670 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2025-10-11 17:42 - 2024-05-22 17:03 - 000000000 ____D C:\Program Files\CCleaner
2025-10-11 17:42 - 2022-09-29 09:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-11 17:42 - 2019-10-24 16:07 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2025-10-11 17:41 - 2025-03-24 18:50 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Skype for Desktop
2025-10-11 17:41 - 2021-12-03 17:27 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2025-10-11 17:41 - 2019-10-24 15:51 - 000000000 ___SD C:\Users\HP\AppData\Roaming\Microsoft\Credentials
2025-10-11 17:41 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-10-11 11:07 - 2025-06-03 10:13 - 000003540 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{55C94316-F9E2-4DDD-9045-0291D962149A}
2025-10-11 11:07 - 2025-06-03 10:13 - 000003410 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{DD1ABF5E-F35C-4F4E-AE66-29993A25E6B8}
2025-10-11 11:07 - 2025-06-03 10:13 - 000002998 _____ C:\Windows\system32\Tasks\MiniTool ShadowMaker
2025-10-11 11:07 - 2024-05-22 17:03 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2025-10-11 11:07 - 2024-05-22 17:03 - 000002796 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - HP
2025-10-11 11:07 - 2021-12-10 14:10 - 000002970 _____ C:\Windows\system32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF}
2025-10-11 11:07 - 2020-02-26 10:48 - 000004244 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582706894
2025-10-11 11:07 - 2020-02-26 10:48 - 000004016 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1582706894
2025-10-11 11:07 - 2019-11-02 11:12 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-10-11 11:06 - 2021-11-12 20:33 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2025-10-10 18:44 - 2021-11-12 20:30 - 000000000 ____D C:\ProgramData\Avast Software
2025-10-10 08:59 - 2020-01-05 17:21 - 000000000 ____D C:\Users\HP\Desktop\Aliexpress
2025-10-09 12:58 - 2025-08-28 18:28 - 000000000 ____D C:\Users\HP\Documents\Založení kvasu
2025-10-08 09:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2025-10-05 16:30 - 2020-12-30 21:55 - 000000000 ____D C:\Users\HP\Documents\Přihlasovací údaje
2025-10-05 11:35 - 2022-10-13 09:24 - 000000000 ____D C:\Users\HP\Documents\Marta Petráková-Dluh-Plyn+Elektřina+Voda
2025-10-05 11:09 - 2025-09-08 08:54 - 000012984 _____ C:\Users\HP\Desktop\Seriály které sleduji.odt
2025-10-02 08:11 - 2022-10-12 08:28 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2025-09-30 09:27 - 2025-08-08 14:10 - 000000000 ____D C:\Users\HP\Desktop\Marketagent
2025-09-30 07:28 - 2019-11-02 10:40 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2025-09-29 12:49 - 2022-09-15 07:12 - 000020692 _____ C:\Users\HP\Desktop\Rudolf Podrazil.odt
2025-09-24 17:58 - 2023-02-14 17:27 - 000012959 _____ C:\Users\HP\Documents\Narozeniny.odt
2025-09-23 12:35 - 2025-02-12 18:09 - 000876104 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000391776 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000390752 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000299616 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000244832 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000085600 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys
2025-09-23 12:35 - 2025-02-12 18:09 - 000029792 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 001282632 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 000574048 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 000284768 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 000092232 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 000071240 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys
2025-09-23 12:35 - 2021-11-12 20:33 - 000021088 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys
2025-09-11 07:21 - 2024-11-19 20:26 - 000000000 ____D C:\Users\HP\AppData\Local\Seznam.cz
2025-09-11 07:21 - 2023-01-14 19:53 - 000000965 _____ C:\Users\HP\Desktop\Seznam.cz.lnk
2025-09-11 07:21 - 2023-01-14 19:53 - 000000945 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk

==================== Files in the root of some directories ========

2023-12-28 10:06 - 2023-10-19 23:17 - 000000036 _____ () C:\Users\HP\AppData\Local\_LOCAL_GUID

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2025-10-01 05:14
==================== End of FRST.txt ========================

A Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by HP (11-10-2025 19:12:56)
Running from C:\Users\HP\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X64) (2019-10-24 13:51:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-671632164-325227383-1259036689-500 - Administrator - Disabled)
Guest (S-1-5-21-671632164-325227383-1259036689-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-671632164-325227383-1259036689-1002 - Limited - Enabled)
HP (S-1-5-21-671632164-325227383-1259036689-1000 - Administrator - Enabled) => C:\Users\HP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Out of date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Enabled - Out of date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 24.09 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2409-000001000000}) (Version: 24.09.00.0 - Igor Pavlov)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 25.001.20756 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Any Video Converter 9.0.4 (HKLM-x32\...\Any Video Converter) (Version: 9.0.4 - Anvsoft)
Apple Mobile Device Support (HKLM\...\{AAFEC555-4154-4A21-9523-30B8CDE94533}) (Version: 18.0.0.33 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.9.10453.3120 - Gen Digital Inc.)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1631.4 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-195C (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.38 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP)
DjVu Viewer (HKLM-x32\...\{3A959BCB-643A-462F-A692-5B7FE4CE35AC}_is1) (Version: - djvuviewer.com)
FormatFactory 5.6.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.6.5.0 - Free Time)
GL USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 1.0.0.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Hotkey Support (HKLM-x32\...\{963F09EA-0B0A-4CFC-B04F-AD9B6614794C}) (Version: 6.2.39.1 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
IrfanView 4.70 (64-bit) (HKLM\...\IrfanView64) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E8266049-8C7B-4A09-9E11-8BD100E0076A}) (Version: 8.0.1.2379 - GenesysLogic)
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{39DC4515-B8C1-3AD9-AA88-D7C8A333612F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.140 - Microsoft Corporation)
Microsoft Security Client (HKLM\...\{2AA3C13E-0531-41B8-AE48-AE28C940A809}) (Version: 4.10.0209.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026 (HKLM\...\{BC958BD2-5DAC-3862-BB1A-C1BE0790438D}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23026 (HKLM\...\{0D3E9E15-DE7A-300B-96F1-B4AF12B96488}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
MiniTool Partition Wizard 12.9 DEMO (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: 12.9 - MiniTool Software Limited)
MiniTool ShadowMaker PW Edition (HKLM-x32\...\MT-75D7C412-925B-4AD0-90DC-5E4FEE22EAE1_is1) (Version: 4.7 - MiniTool Software Limited)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.1.0 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 115.18.0 (x64 en-US)) (Version: 115.18.0 - Mozilla)
MP3 Skype recorder v.6 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\MP3SkypeRecorder) (Version: 6.1.5 - Domit LTD)
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.2006 - Nero AG) Hidden
Nero Core (HKLM-x32\...\{EF1C9DB5-D928-4F38-89DE-B1BB8911462E}) (Version: 1.0.01700 - Nero AG)
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.7.3045 - Nero AG) Hidden
Nero KnowHow PLUS (HKLM-x32\...\{AACDE618-4162-4074-B01D-67C5E8D07233}) (Version: 1.3.5005 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{7BC834B5-9093-4A6D-8303-01760E4E61B2}) (Version: 20.1.1020 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 20.0.1006 - Nero AG) Hidden
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.15 (HKLM-x32\...\{45B154A5-9E97-452F-94DE-08EBE6BD0D85}) (Version: 4.115.9813 - Apache Software Foundation)
Opera Stable 77.0.4054.277 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 77.0.4054.277) (Version: 77.0.4054.277 - Opera Software)
Opera Stable 95.0.4635.90 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 95.0.4635.90) (Version: 95.0.4635.90 - Opera Software)
PredatorCreator verze 2.3.9.0 (HKLM-x32\...\PredatorCreator_is1) (Version: 2.3.9.0 - )
ProfiCAD 12.4.6 (HKLM-x32\...\ProfiCAD_is1) (Version: - )
Prohlížeč Seznam.cz (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Seznam Browser) (Version: 6.30.1 - Seznam.cz a.s.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Skype verze 8.150 (HKLM-x32\...\Skype_is1) (Version: 8.150 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Viber (HKLM-x32\...\{A91FC964-07DF-4856-99FA-FDF33DE9D16C}) (Version: 11.8.0.60 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\{a388723b-b292-4b27-987e-dd5cee72be11}) (Version: 11.8.0.60 - Viber Media S.a.r.l)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.691 - McAfee, LLC)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)

Chrome apps:
============
TikTok (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\004ce63915fc9acbf754487309c151af) (Version: 1.0 - Google\Chrome)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-671632164-325227383-1259036689-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Acrobat Elements\ContextMenuShim64.dll [2025-09-08] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-09-23] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\HP\Desktop\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc

==================== Loaded Modules (Whitelisted) =============

2019-11-23 20:27 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-11-23 20:27 - 2012-06-05 16:59 - 000025299 ____R (Brother Industries, Ltd) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlm03a.dll
2019-11-23 20:27 - 2008-11-26 11:25 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrFirmUpdateCheck.dll
2019-11-23 20:27 - 2008-08-18 19:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlmw03a.dll
2019-11-23 20:27 - 2011-04-11 13:53 - 000163840 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BRMFCWNDCze.dll
2019-11-23 20:27 - 2010-03-29 06:32 - 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcccze.dll
2019-11-23 20:27 - 2010-03-10 19:16 - 000770048 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2019-11-23 20:27 - 2012-10-09 16:30 - 000372736 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2019-11-23 20:27 - 2009-09-28 14:38 - 005390336 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2024-11-30 00:00 - 2024-11-30 00:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-10-24 16:10 - 2012-10-24 18:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2011-06-14 18:13 - 2011-03-04 11:13 - 000058368 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MIMF64_N.dll
2011-06-14 18:13 - 2011-03-29 15:05 - 000115200 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MLMN64_N.DLL
2011-06-14 18:13 - 2011-03-04 11:13 - 000115712 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MSPO64_N.dll
2011-06-14 18:13 - 2011-05-05 17:21 - 001629696 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\mstm64_n.dll
2011-06-14 18:13 - 2011-03-04 11:13 - 000050176 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MTAG64_N.dll
2011-06-14 18:13 - 2011-03-04 11:13 - 000056832 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\MIPR64_N.DLL
2019-11-23 20:27 - 2003-06-30 01:00 - 000259584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2019-11-23 20:27 - 2005-07-05 01:00 - 000131584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2019-11-23 20:27 - 2003-06-30 01:00 - 000406016 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-fibers-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-fibers-l1-1-1.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-file-l1-2-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-file-l2-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-kernel32-legacy-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-kernel32-legacy-l1-1-1.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-localization-l1-2-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-processthreads-l1-1-1.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-synch-l1-2-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-sysinfo-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-sysinfo-l1-2-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-core-timezone-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-convert-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-environment-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-heap-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-locale-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-math-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-runtime-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-stdio-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-string-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-time-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\api-ms-win-crt-utility-l1-1-0.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\MSVCP140.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\ucrtbase.DLL
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\VCRUNTIME140.dll
2025-10-11 10:23 - 2025-10-11 10:23 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\local.crt\vcruntime140_1.dll] C:\Program Files\Avast Software\Avast\defs\25101100\local.crt\VCRUNTIME140_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) =============

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2021-12-02 01:34 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.1.1
Windows Firewall is enabled.

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-671632164-325227383-1259036689-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)


==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{BA18EF4A-7439-4F34-A70C-190F03DB4C7D}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [UDP Query User{D435E0CE-1927-449A-AA1A-A23FC257E650}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{DDACAD40-F36E-4284-8508-C04A21629D87}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{FB661B80-E433-488E-9092-9A79D77F1156}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [{9B9BC33E-559F-49C0-83A5-ED25D5E1778F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0745099-D81D-408F-983F-46230853AC68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5356089F-E214-4EBF-B85A-09747D0A355A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3C4D874-8FC6-4602-B74D-6CBD979BC104}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{080AE790-A2DD-4CE6-AD4D-41F9C1DF7072}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{0A64DEB8-16C1-4218-AB0E-1C04416345BB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{4C9E4063-C2EF-423E-9D02-4D6FAF0E66EF}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{D17FBDF1-30E2-4B1D-80DD-E88870BB720D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{2FE2D000-7198-46A7-9D52-C020A5987B4D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{6FA57F77-14B1-4235-9CA4-F2A4BD1D9F47}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B3023066-8296-440B-A880-3B571154928D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{35358941-A9E1-4A6B-B1B5-5E82EB83829D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{427D3D67-7F26-4C16-A96E-428EBF243C4C}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{11EA66BF-101B-4745-9A3D-C4541F5532CF}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [TCP Query User{5620BA99-6828-4EA3-BCE4-CAB39360201D}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{263D01CA-EE67-4913-8018-FE7909B19F90}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [{D06566CC-B948-43FC-BEE9-DF894A7A5B24}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.84\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{B2919BBB-B852-477F-B9DE-30865EDBEEC8}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.90\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{95057BD6-B040-45D9-AC98-38749AEBCACA}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{8C79B1E9-9331-4625-A9E5-18E02DD075BB}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{E03A80ED-FB4F-49E3-99EB-559350FD7D64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{86C32B23-C3CC-433E-89EC-8E531013ED64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{2B391957-A3BA-4023-8650-5A12D8659949}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B0E6FE5-4A69-4DEB-A420-95DC7C8C7E16}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{4F2AE555-038E-4B2D-9FEC-40A24C9572F2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4A2B3A39-5C7E-4503-B3CB-76734B2A3874}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5C46133D-BF41-4916-83F4-9243E1B15B14}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1572A74B-66C0-4F78-99B6-71BB64E5D5AD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EC9EDA7B-2988-4731-850F-2DE1C7C27E09}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EBA6CE50-08EE-481F-9CCD-D362711594F8}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )
FirewallRules: [{CF1FC7E3-8DF6-4A6B-9AC7-E69F6713CC2A}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )
FirewallRules: [{B86F8B65-B85E-4790-93EB-3ED4E17A05B9}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )
FirewallRules: [{0465C90A-6431-459C-ACE7-90C37D5D9B28}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )

==================== Restore Points =========================

10-10-2025 19:55:06 Windows Zálohování

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/11/2025 05:41:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (10/11/2025 06:22:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 30357577

Error: (10/11/2025 06:22:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 30357577

Error: (10/11/2025 06:22:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/10/2025 06:44:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (10/10/2025 03:53:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (10/10/2025 02:15:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1027703

Error: (10/10/2025 02:15:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1027703


System errors:
=============
Error: (10/11/2025 07:17:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (10/11/2025 07:17:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/11/2025 07:17:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (10/11/2025 07:17:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/11/2025 07:17:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/11/2025 07:17:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (10/11/2025 07:17:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/11/2025 07:17:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.


Windows Defender:
================Event[0]:

Date: 2019-11-02 08:36:10.699
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-11-01 12:33:34.092
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-31 14:41:50.684
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-29 12:02:31.399
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-27 06:50:55.213
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICF Ver. F.32 12/05/2012
Motherboard: Hewlett-Packard 17A7
Processor: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz
Percentage of memory in use: 77%
Total physical RAM: 8055.55 MB
Available physical RAM: 1847.66 MB
Total Virtual: 16109.25 MB
Available Virtual: 8164.67 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:74.55 GB) (Model: Patriot Burst ATA Device) NTFS

\\?\Volume{2723956c-f665-11e9-9394-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F1D3BAFD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Zdravím!
Toto bude asi problém hardwaru. Jak dopadl test RAM? Našel nějaký problém?. Zkuste nejdřív opravu systému (startu) : https://support.microsoft.com/cs-cz/top ... bf51f7dd5d . Až bude systém fungovat, proveďte kontrolu disku. Stáhněte, nainstalujte a spusťte CrystalDisk\info: https://www.slunecnice.cz/sw/crystaldiskinfo/ a přes Úpravy>Kopírovat sem dejte log.

Test RAM dopadl úspěšně voz obrázek: Dále budu pokračovat podle Vaších rad a pak dám vědět jak jsem dopadl.

OK. Lepší (přesnější) je tento test: https://forum.viry.cz/viewtopic.php?t=106788 . Běží sám od sebe a není ovlivněn systémem. Teď bych poprosil (za předpokladu, že se podaří systém spustit) test disku.

Včera v noci jsem se pokoušel stáhnout ten ISO soubor ale nepodařilo se mi to ani na třetí krát, stále vypisovalo že nastala chyba při stahování tak jsem to vzdal, zavřel notebook a šel spát. Ráno jsem zkusil notebook zapnout a najel normálně jak má. Z toho návodu od Microsoft taktéž nejsem moc moudrý, nějak nevím kde co jak udělat, je to pro mě tak trochu složité.

Nyní zjišťuji že jsem s největší pravděpodobností chtěl stáhnout úplně něco jiného. Přikládám výstřižek, toho jsem si až nyní všimnul že to je na té stránce. Který z nich bych měl stáhnout a jak dál prokračovat? Jestli je toto správné.

Tohle vidím poprvé. V odkazu se jasně píše, že máte stáhnout z http://www.memtest.org/ iso soubor (měl by to být ten druhý shora. Pak vypálíte pomocí přiložené utility Spustitelné CD. Vložíte do mechaniky a necháte minimálně 2x projít celý test. Co ten test disku? Je jedno, zda provedete nejdřív rest disku, nebo RAM.

----------------------------------------------------------------------------
CrystalDiskInfo 9.7.2 (C) 2008-2025 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2025/10/12 11:39:09

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- Patriot Burst ATA Device
+ ATA Channel 1 (1) [ATA]
- hp CDDVDW SN-208DB ATA Device
- ATA Channel 3 (3) [ATA]
- ATA Channel 4 (4) [ATA]
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- ATA Channel 3 (3)
- ATA Channel 4 (4)
- ATA Channel 5 (5)

-- Disk List ---------------------------------------------------------------
(01) Patriot Burst : 240,0 GB [0/0/0, pd1] - ph

----------------------------------------------------------------------------
(01) Patriot Burst
----------------------------------------------------------------------------
Model : Patriot Burst
Firmware : SBFMJ1.3
Serial Number : 568007671BEE00907348
Disk Size : 240,0 GB (8,4/137,4/240,0/240,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 468862128
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-4
Minor Version : ----
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 10450 hodin
Power On Count : 10072 krát
Host Writes : 15294 GB
Temperature : 33 C (91 F)
Health Status : Dobrý (69 %)
Features : S.M.A.R.T., NCQ, TRIM, GPL
APM Level : ----
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Read Error Rate
09 100 100 __0 0000000028D2 Power on Hours
0C 100 100 __0 000000002758 Power Cycle Count
A8 100 100 __0 000000000000 SATA PHY Error Count
AA _72 _72 _10 000000000072 Bad Block Count
AD 100 100 __0 000001320147 Erase Count
C0 100 100 __0 00000000000A Unexpected Power Loss Count
C2 _67 _67 __0 002100210021 Temperature
DA 100 100 _50 000000000000 Number of CRC Error
E7 100 100 __0 000000000045 SSD Life Left
F1 100 100 __0 000000003BBE Host Writes

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3536 3830 3037 3637 3142 4545 3030 3930 3733 3438
020: 0000 0000 0000 5342 464D 4A31 2E33 5061 7472 696F
030: 7420 4275 7273 7420 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 1F00
070: 0000 0000 0000 0000 0000 001F 850E 0006 004C 0040
080: 0FF8 0000 746B 7D01 4163 7469 BC01 4163 007F 000A
090: 001E 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 44B0 1BF2 0000 0000 0000 0008 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 10FF 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 FFFE 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 27A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 09 12
010: 00 64 64 D2 28 00 00 00 00 00 0C 12 00 64 64 58
020: 27 00 00 00 00 00 A8 12 00 64 64 00 00 00 00 00
030: 00 00 AA 03 00 48 48 72 00 00 00 00 00 00 AD 12
040: 00 64 64 47 01 32 01 00 00 00 C0 12 00 64 64 0A
050: 00 00 00 00 00 00 C2 23 00 43 43 21 00 21 00 21
060: 00 00 DA 0B 00 64 64 00 00 00 00 00 00 00 E7 13
070: 00 64 64 45 00 00 00 00 00 00 F1 12 00 64 64 BE
080: 3B 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 FF FF 00 79
170: 03 00 01 00 02 1E 06 1E 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FE

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 32 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 A8 00 00 00 00 00 00 00 00 00
030: 00 00 AA 0A 00 00 00 00 00 00 00 00 00 00 AD 00
040: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
050: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
060: 00 00 DA 32 00 00 00 00 00 00 00 00 00 00 E7 00
070: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 39


Snad je to v pořádku.

Prosím o pomoc. Chystám se vypálit to spustitelné CD ale stojím před problémem co na to CD vypálit. Přikládám rozbalený soubor.

Pozri: https://www.nove-stvoreni.cz/napoveda-j ... e-obraz-cd

To mi je vše jasné, mám nainstalovaný CDBurnerXP jenom mi jde o to co vybrat a nechat napálit. Je tam složka "boot", "EFI" a "boot.catalog". Už jsem napaloval CD, DVD tak v tom nejsem až takový začátečník.

Burn ISO image
Nemozes to napalovat ako datovy disk

To mi je taktéž jasné že mám zvolit "Vypálit obraz ISO" ale kterou položku vybrat z toho co jsem uvedl výše? "boot", "EFI" a "boot.catalog"

Ty nic nevyberas - kliknes na subor.iso a das napalit obraz
To co tam vidis potrebujes kompletne

Tak myslím že jsem to už konečně pochopil. Já jsem totiž rozbalil i ten "memtest.iso". Takže ten mám extrahovat a pak jej budu moci vypálit.
Už jej mám extrahovaný a když jsem v CDBurnerXP nastavil tu položku "Vypálit obraz ISO" a následně začal hledat obraz ISO k vypálení tak se mi tam konečně ten extrahovaný soubor objevil.
Tak zatím mockrát děkuji a já můžu pokračovat dál.