Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola frst

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
5manager5
Návštěvník
Návštěvník
Příspěvky: 284
Registrován: 10 led 2009 21:21

kontrola frst

#1 Příspěvek od 5manager5 »

adware cleaner nenašiel nič len nejake HP veci

dosť často sa zapína chladenie a procesor ide aj na 80 stupnov

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-09-2025
Ran by igorv (administrator) on SAUL (HP HP ProBook 455 15.6 inch G10 Notebook PC) (16-09-2025 20:45:17)
Running from C:\Users\igorv\Downloads\FRST64.exe
Loaded Profiles: igorv
Platform: Microsoft Windows 11 Home Version 24H2 26100.6584 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\LHAgent.exe ->) (HP Inc. -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Providers\Hewlett-Packard\Software Package Manager\SoftwarePackageManager.exe
(C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\LHAgent.exe ->) (HP Inc. -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\HPTouchpointManagerTray.exe
(C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\LHAgent.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Providers\Hewlett-Packard\CoreProvider\CoreProvider.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\114.0.1.0\crashpad_handler.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\AppHelperCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\BridgeCommunication.exe
(DriverStore\FileRepository\snapo64.inf_amd64_fd4aaa60454ea9da\SNAPOSS64.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Sonitude Corporation) C:\Windows\System32\DriverStore\FileRepository\snapo64.inf_amd64_fd4aaa60454ea9da\SNAPOS64.exe
(DriverStore\FileRepository\u0408580.inf_amd64_8c845c7af98953b1\B408487\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0408580.inf_amd64_8c845c7af98953b1\B408487\atieclxx.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> DesktopExtension) C:\Program Files\WindowsApps\AD2F1837.myHP_49.52537.7800.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Google LLC -> Google LLC.) C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe <7>
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0408580.inf_amd64_8c845c7af98953b1\B408487\atiesrxx.exe
(services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Security Update Service\4.4.26.1391\SecurityUpdateService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\LHAgent.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Tools\WatchDogService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_d57a8c6bda0aacf4\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\HPAudioAnalytics.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_4a57618c1fb4b513\x64\hpsvcsscan.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Sonitude Corporation) C:\Windows\System32\DriverStore\FileRepository\snapo64.inf_amd64_fd4aaa60454ea9da\SNAPOSS64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\NisSrv.exe
(services.exe ->) (Plantronics, Inc. -> Poly, Inc.) C:\Program Files (x86)\oz-client\LensUpdateService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_95669274817e10e1\RtkAudUService64.exe <3>
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_49.52537.7800.0_x64__v10z8vjag6ke6\HP.myHP.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Client Security Manager\HP.ClientSecurityManager.exe
(svchost.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP ICS\ICS.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.26.430.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.124.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22507.1401.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_95669274817e10e1\RtkAudUService64.exe [2996672 2025-06-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe [66461848 2025-09-15] (Google LLC -> Google LLC.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe [66461848 2025-09-15] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe [66461848 2025-09-15] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\Run: [MicrosoftEdgeAutoLaunch_12DCDEA817FD98234F2AB1F8B100D4B7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4254248 2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\MountPoints2: {895b026d-5d7b-11f0-9f19-bc7a5c0c7622} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\114.0.1.0\GoogleDriveFS.exe [66461848 2025-09-15] (Google LLC -> Google LLC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [1980-01-01] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\140.0.7339.128\Installer\chrmstp.exe [2025-09-10] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {40979346-16EF-4FD1-BD74-ED25783CAFF5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem141.0.7376.0{55C1C984-7DC3-440E-A742-C9715420AEA6} => C:\Program Files (x86)\Google\GoogleUpdater\141.0.7376.0\updater.exe [6855320 2025-08-26] (Google LLC -> Google LLC)
Task: {63F9F686-0E6F-47E0-8341-5D149B3E46F5} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO
Task: {AC70CF3B-3AC0-475D-B90F-22DC329AD2BB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError
Task: {E0BE6772-64CD-4EAC-A32F-3650AC09FEA9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusTest
Task: {2B064F5A-B560-440C-9C66-C1C4B53287EE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF
Task: {55FAE072-517B-4643-BA26-1D1999823548} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1
Task: {67ECA950-491C-4B84-9953-2BA7326C4102} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2
Task: {6A03296A-2E0F-494B-BE39-9F2938217981} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI
Task: {834780AF-6E13-41CF-B49D-5F8ECF7D6563} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags:
Task: {A4AA8AD6-B839-439E-B20B-0AA689337C9D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError
Task: {59A3FDEA-F9F2-4E14-9182-597D9A9B920D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => C:\windows\system32\cmd.exe [344064 2025-09-09] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckTest
Task: {4B815F81-D760-4C6F-975D-FFCC98D9CA98} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-BatteryStatusTest => c:\Windows\System32\schtasks.exe [290816 2025-06-14] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\BatteryStatusTest"
Task: {2485C39A-E871-4B62-87F9-F7E02C2A2B7B} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-SmartCheckTest => c:\Windows\System32\schtasks.exe [290816 2025-06-14] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\SmartCheckTest"
Task: {810007E6-FF4F-41D3-B806-C93B43C99C87} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1004040 2025-09-02] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {3212DA34-4D41-4B47-80ED-B5B77D00D0C7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [480264 2025-09-02] (HP Inc. -> HP Inc.)
Task: {BFC52B0A-81AF-4D96-8F05-E912F68A0227} - System32\Tasks\HP\Consent Manager Launcher => C:\windows\system32\sc.exe [102400 2025-07-10] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {DA847129-1FBC-49A8-95F1-9AB56F0DADCB} - System32\Tasks\HP\HP ICS\ICS => C:\Program Files (x86)\HP\HP ICS\ICS.exe [78979088 2024-07-31] (HP Inc. -> HP)
Task: {FCFFC5DC-9446-4E2F-8A53-E3F2D5D81096} - System32\Tasks\HP\HP Wolf Security\Launch Console => C:\Program Files\HP\HP Client Security Manager\HP.ClientSecurityManager.exe [250888 2025-03-28] (HP Inc. -> HP Inc.)
Task: {FB1A0ED0-DA63-404C-950D-75685112C85C} - System32\Tasks\HPDataRetriever => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-application-info-collector_ver_4.675.11370\hp-data-retriever.exe (No File)
Task: {67F09B4E-DBF1-4A32-A14B-10A83D743C8D} - System32\Tasks\HPInsightsUpdater => C:\Program Files (x86)\HP\HP Touchpoint Analytics Client Installer\TAInstaller.exe [3126504 2025-08-29] (HP Inc. -> )
Task: {1AC9AC68-A9ED-474A-9EE3-DB35AD5C4615} - System32\Tasks\HPOneAgentRepairTask => C:\ProgramData\Package Cache\{7CF09040-C14A-4FAA-B61A-1A7F2BDE3719}\HPOneAgent.exe [1169744 2025-09-15] (HP Inc. -> HP Inc; HP Development Company, L.P.)
Task: {4E96B2D1-F910-461A-9CBD-3F1A75D4CA13} - System32\Tasks\HPSupportTool => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-iolo-collector_ver_4.675.11370\HPSupportAssistant1.exe (No File)
Task: {92593E12-60B7-4770-8EB1-EBAF9D9CC73C} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [17009032 2025-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {43F24E0B-52BB-41B2-BAEF-F6323FDAB85D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29024664 2025-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C85678B9-0389-4AF1-805E-BD0A27DB6658} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70528 2025-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A5AAB04-7FFC-47EE-9F6E-55FE685462E3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29024664 2025-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {53EFBC47-BBF6-4FB5-B2AC-A5AD892307A6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [313744 2025-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F538CFB-62EF-4A2E-9011-25F7B76DC487} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [313744 2025-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {D6FAF5B4-49FD-414C-9BFE-8103CFF01E24} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365272 2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {60EC22A0-C447-4E8C-ADF2-C841F23BEB19} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpCmdRun.exe [1778240 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E20664AE-EF95-49ED-9694-ACD1656B8F3C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpCmdRun.exe [1778240 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41779035-5BCC-4927-95DB-91FED7AEB1E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpCmdRun.exe [1778240 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2678D237-44F8-49F8-B458-B7E7B62821F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpCmdRun.exe [1778240 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3E4451E-7955-479C-AB09-1F3B63639060} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2024-10-14] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.31.248 1.1.1.1
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}: [DhcpNameServer] 192.168.31.248 1.1.1.1
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}: [DhcpDomain] localdomain
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}\4505D2C496E6B6F554874756E6465627: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}\859616F6D696F553638383F55374: [DhcpNameServer] 192.168.31.248 1.1.1.1
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}\859616F6D696F553638383F55374: [DhcpDomain] localdomain
Tcpip\..\Interfaces\{4ddb69af-f8ec-43b0-a00d-fa4771a09735}\859616F6D696F553638383F5548545: [DhcpNameServer] 192.168.31.234

Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\igorv\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2025-09-16]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\igorv\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-01]
Edge Extension: (Edge relevant text changes) - C:\Users\igorv\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-07-26]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\igorv\AppData\Local\Google\Chrome\User Data\Default [2025-09-16]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\igorv\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-15]
CHR Extension: (Spúšťač aplikácie pre Disk (od Googlu)) - C:\Users\igorv\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2025-08-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\igorv\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-08-31]
CHR HKU\S-1-5-21-2384847340-952867437-1279697988-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13287776 2025-09-08] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [1038392 2025-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\HotKeyServiceUWP.exe [1511528 2025-07-07] (HP Inc. -> HP Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [475680 2023-04-14] (HP Inc. -> HP Inc.)
S2 hp-one-agent-service; C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2408032 2025-08-13] (HP Inc. -> HP Inc; HP Development Company, L.P.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\AppHelperCap.exe [909496 2025-08-20] (HP Inc. -> HP Inc.)
R2 HPAudioAnalytics; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\HPAudioAnalytics.exe [503912 2025-07-07] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\DiagsCap.exe [907960 2025-08-20] (HP Inc. -> HP Inc.)
R2 hpLHAgent; C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Agent\LHAgent.exe [7718568 2025-08-26] (HP Inc. -> HP Inc.)
R2 hpLHWatchdog; C:\Program Files (x86)\Hewlett-Packard\HP Touchpoint Manager\Tools\WatchDogService.exe [1562280 2025-08-26] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\NetworkCap.exe [903840 2025-08-20] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 hpsvcsscan; C:\WINDOWS\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_4a57618c1fb4b513\x64\hpsvcsscan.exe [7100224 2025-06-19] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_435c166df33291ac\x64\SysInfoCap.exe [909496 2025-08-20] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_d57a8c6bda0aacf4\x64\TouchpointAnalyticsClientService.exe [639760 2025-07-14] (HP Inc. -> HP Inc.)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\LanWlanWwanSwitchingServiceUWP.exe [605288 2025-07-07] (HP Inc. -> HP Inc.)
R2 LensUpdateService; c:\Program Files (x86)\oz-client\LensUpdateService.exe [1165088 2024-05-16] (Plantronics, Inc. -> Poly, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MpDefenderCoreService.exe [2050952 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SecurityUpdateService; C:\Program Files\HP\Security Update Service\4.4.26.1391\SecurityUpdateService.exe [5615432 2025-07-23] (Bromium UK Limited -> HP)
R2 SNAPOService; C:\WINDOWS\System32\DriverStore\FileRepository\snapo64.inf_amd64_fd4aaa60454ea9da\SNAPOSS64.exe [369408 2025-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Sonitude Corporation)
S2 WbfPolicyService110; C:\WINDOWS\System32\DriverStore\FileRepository\synawudfbiousbuwpsvc.inf_amd64_b12a1111c8064a8a\WbfPolicyService110.exe [715784 2025-05-22] (Synaptics Incorporated -> Synaptics Incorporated.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\NisSrv.exe [4517784 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25070.5-0\MsMpEng.exe [282464 2025-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrmgr.sys [25672 2024-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0408580.inf_amd64_8c845c7af98953b1\B408487\amdkmdag.sys [106591144 2024-10-22] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amdwirelessbutton; C:\WINDOWS\System32\drivers\amdwirelessbutton.sys [39032 2024-03-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [573440 2024-12-12] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [204800 2024-12-12] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-12-12] (Microsoft Corporation) [File not signed]
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222592 2025-09-09] (Microsoft Windows -> Microsoft Corporation)
R2 googledrivefs31931; C:\Program Files\Google\Drive File Stream\Drivers\31931\googledrivefs31931.sys [386256 2025-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [332184 2025-08-07] (Microsoft Windows -> Microsoft Corporation)
S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [140704 2025-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_bee0043985624487\mtkbtfilterx.sys [550072 2025-02-15] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_95f6d65fad9c72f2\mtkwl6ex.sys [2082680 2025-07-11] (MEDIATEK INC. -> MediaTek Inc.)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_dfef95d907bbcd6a\rt68cx21x64.sys [899624 2025-01-12] (Realtek Semiconductor Corp. -> Realtek)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-06-14] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20888 2025-08-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [627120 2025-08-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [101792 2025-08-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
2025-09-16 20:45 - 2025-09-16 20:45 - 000030053 _____ C:\Users\igorv\Downloads\FRST.txt
2025-09-16 20:45 - 2025-09-16 20:45 - 000000000 ____D C:\FRST
2025-09-16 20:44 - 2025-09-16 20:44 - 002442752 _____ (Farbar) C:\Users\igorv\Downloads\FRST64.exe
2025-09-15 10:18 - 2025-09-15 10:18 - 000000000 _____ C:\WINDOWS\system32\enrollment.sto
2025-09-14 18:14 - 2025-09-16 18:35 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-09-12 19:38 - 2025-09-14 20:35 - 000000000 ____D C:\Program Files\HWiNFO64
2025-09-12 19:38 - 2025-09-12 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO® 64
2025-09-12 19:35 - 2025-09-12 19:35 - 000000782 _____ C:\Users\igorv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HWiNFO64.lnk
2025-09-09 22:02 - 2025-09-09 22:02 - 000077233 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-09-09 22:02 - 2025-09-09 22:02 - 000077233 _____ C:\WINDOWS\system32\ctac.json
2025-09-09 22:02 - 2025-09-09 22:02 - 000001681 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-09-01 08:19 - 2025-09-01 08:19 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-09-01 08:10 - 2025-09-01 08:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleUserPEH
2025-08-31 10:58 - 2025-09-10 22:51 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-08-25 15:24 - 2025-09-04 15:30 - 000000000 ____D C:\Users\igorv\AppData\Local\SquirrelTemp
2025-08-23 14:16 - 2025-06-05 07:08 - 000022472 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtEventLog.dll
2025-08-23 14:14 - 2025-07-11 04:34 - 000578472 _____ (MediaTek Inc.) C:\WINDOWS\system32\mtkihvx.dll
2025-08-19 13:43 - 2025-08-19 13:43 - 000000000 ____D C:\Users\igorv\Documents\Záznamy zvuku

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-09-16 20:21 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-09-16 20:07 - 2024-05-18 10:19 - 000000000 ___SD C:\Users\igorv\AppData\Roaming\Microsoft\Credentials
2025-09-16 18:35 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-09-16 16:50 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-09-16 16:49 - 2024-01-26 15:41 - 000000000 ____D C:\Program Files\Microsoft Office
2025-09-16 15:08 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-09-15 19:00 - 2024-05-18 10:41 - 000000000 ____D C:\Users\igorv\AppData\Local\D3DSCache
2025-09-15 19:00 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-09-15 18:43 - 2024-05-21 08:47 - 000002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-09-15 10:42 - 2024-12-12 17:55 - 000791266 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-09-15 10:35 - 2024-12-12 17:56 - 000009052 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-09-15 10:35 - 2024-12-12 17:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-09-15 10:35 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-09-15 10:35 - 2023-09-05 13:19 - 000012288 ___SH C:\DumpStack.log.tmp
2025-09-15 10:34 - 2024-04-01 09:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-09-15 10:18 - 2024-12-12 17:56 - 000003844 _____ C:\WINDOWS\system32\Tasks\HPOneAgentRepairTask
2025-09-15 10:18 - 2024-05-23 22:48 - 000000000 ____D C:\ProgramData\Package Cache
2025-09-15 10:18 - 2023-09-05 13:26 - 000000000 ____D C:\ProgramData\HP
2025-09-14 15:08 - 2024-05-21 08:51 - 000000000 ____D C:\1
2025-09-14 13:19 - 2025-07-10 21:26 - 000000000 ____D C:\Users\igorv\AppData\Roaming\vlc
2025-09-14 13:19 - 2024-05-21 08:56 - 000000000 ____D C:\3
2025-09-13 09:37 - 2023-09-05 13:19 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-09-12 19:32 - 2024-12-12 17:56 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-09-12 19:32 - 2024-12-12 17:56 - 000003506 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-09-10 10:11 - 2024-05-18 10:19 - 000000000 ____D C:\Users\igorv\AppData\Local\Packages
2025-09-09 22:20 - 2024-12-12 17:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2025-09-09 22:19 - 2024-12-12 17:54 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-09-09 22:16 - 2024-12-12 17:54 - 000622176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-09-09 22:16 - 2024-01-26 15:44 - 000000000 ____D C:\Program Files\AMD
2025-09-09 22:15 - 2024-04-01 18:35 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-09-09 22:15 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-09-09 22:15 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-09-09 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-09-09 22:15 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-09-09 22:11 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-09-09 22:11 - 2024-04-01 09:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2025-09-09 22:02 - 2024-12-12 17:55 - 003270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-09-09 21:55 - 2025-04-19 16:23 - 000000000 ____D C:\Program Files\dotnet
2025-09-09 16:02 - 2023-09-05 13:28 - 000000000 ____D C:\ProgramData\Packages
2025-09-04 15:30 - 2024-05-24 09:37 - 004213136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-09-04 15:30 - 2024-05-24 09:37 - 000829840 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-09-04 15:30 - 2024-05-24 09:37 - 000276880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-09-04 15:30 - 2024-05-24 09:37 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-09-04 15:30 - 2024-05-24 09:37 - 000166288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-09-04 15:30 - 2024-05-24 09:37 - 000121208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-09-04 15:30 - 2024-05-24 09:37 - 000076176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-09-01 16:38 - 2024-05-18 10:43 - 000000000 ____D C:\Users\igorv\AppData\Local\PlaceholderTileLogoFolder
2025-08-31 10:58 - 2024-05-21 08:47 - 000000000 ____D C:\Users\igorv\AppData\Local\Google
2025-08-31 10:58 - 2024-05-21 08:47 - 000000000 ____D C:\Program Files\Google
2025-08-23 15:36 - 2024-05-23 10:04 - 000000000 ____D C:\Users\igorv\AppData\Roaming\Microsoft\Word
2025-08-23 14:16 - 2024-05-21 13:22 - 000000000 ____D C:\SWSetup

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

5manager5
Návštěvník
Návštěvník
Příspěvky: 284
Registrován: 10 led 2009 21:21

Re: kontrola frst

#2 Příspěvek od 5manager5 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-09-2025
Ran by igorv (16-09-2025 20:46:51)
Running from C:\Users\igorv\Downloads
Microsoft Windows 11 Home Version 24H2 26100.6584 (X64) (2024-12-12 15:56:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2384847340-952867437-1279697988-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2384847340-952867437-1279697988-503 - Limited - Disabled)
Guest (S-1-5-21-2384847340-952867437-1279697988-501 - Limited - Disabled)
igorv (S-1-5-21-2384847340-952867437-1279697988-1001 - Administrator - Enabled) => C:\Users\igorv
WDAGUtilityAccount (S-1-5-21-2384847340-952867437-1279697988-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AIDA64 Extreme v7.70 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 7.70 - FinalWire Ltd.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.19.18.03 - Advanced Micro Devices, Inc.)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 114.0.1.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 140.0.7339.128 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
HP Client Management Script Library (HKLM-x32\...\{5A1AECCB-E0CE-4D2C-833C-29CCEA959448}_is1) (Version: 1.7.1 - HP Development Company, L.P.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.20.0 - HP Inc)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Insights (HKLM-x32\...\{A4E18718-255A-4E26-9093-806E26B76207}) (Version: 5.25.86 - HP Inc.)
HP Notifications (HKLM-x32\...\{19F557DE-662A-4FEA-B635-1CACD56CC483}) (Version: 1.1.29.12 - HP)
HP One Agent (HKLM\...\{7CF09040-C14A-4FAA-B61A-1A7F2BDE3719}) (Version: 1.1.973.9172 - HP Inc.)
HP One Agent (HKLM\...\{7EFF7A5C-E41B-4E5C-B075-08C00AA3F2EB}) (Version: 1.1.973.9172 - HP Inc.) Hidden
HP Security Update Service (HKLM\...\{74C6C478-7AD6-4923-AC3A-B5C837C7B517}) (Version: 4.4.26.1391 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Sure Recover (HKLM\...\{7DC79887-72FA-4688-BBB9-2968BA80F61B}) (Version: 10.1.26.255 - HP Inc.)
HP Sure Run Module (HKLM\...\{3A089261-A5F9-4312-ABF0-9564F47A5AB8}) (Version: 5.0.5.81 - HP Inc.)
HP System Default Settings (HKLM-x32\...\{5C1C084D-1DB7-4CAB-840F-E5DD386C2A50}) (Version: 1.4.16.22 - HP Inc.) Hidden
HP System Default Settings (HKLM-x32\...\{C4192E14-642D-4A9C-84BA-38FD0963F19D}) (Version: 1.4.16.16 - HP Inc.) Hidden
HP Wolf Security - Console (HKLM\...\{A23FAC27-E542-4922-A1D7-3417EC372A58}) (Version: 11.1.4.895 - HP Inc.)
HP Wolf Security Application Support for Chrome 132.0.6834.111 (HKLM\...\{894CA93E-47E9-4DE6-B6D4-A3A8AFD97DBB}) (Version: 4.4.23.315 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 132.0.6834.210 (HKLM\...\{387845A8-02D1-4A17-A609-4CDD3A25C284}) (Version: 4.4.23.324 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 132.0.6834.211 (HKLM\...\{77F1131C-54B1-47D2-A355-F760BF314FA7}) (Version: 4.4.23.327 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 134.0.6998.178 (HKLM\...\{1DE23EA0-7E93-4166-AADE-55B9F23B7D43}) (Version: 4.4.24.3261 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 134.0.6998.207 (HKLM\...\{3A6B2680-2A97-4DB1-BB67-4AA89E86F18D}) (Version: 4.4.24.3274 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 136.0.7103.178 (HKLM\...\{86764B96-8E32-485D-A337-5B546909E865}) (Version: 4.4.25.2040 - HP Inc.) Hidden
HP Wolf Security Application Support for Chrome 138.0.7204.170 (HKLM\...\{6C174EDA-F80B-4926-B659-F08E5C7BBC59}) (Version: 4.4.26.1406 - HP Inc.) Hidden
HWiNFO® 64 (HKLM\...\HWiNFO® 64_is1) (Version: 8.30 - Martin Malik, REALiX s.r.o.)
ICS (HKLM-x32\...\{5CD25FCD-D218-46D0-B405-E5A488969BDF}) (Version: 3.1.18.25 - HP Inc.)
Microsoft .NET Host - 8.0.20 (x64) (HKLM\...\{E8562B28-F84C-45AA-AE65-E31D1068377F}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.20 (x64) (HKLM\...\{BB4BB73D-8784-40A3-9888-9BD29EC1B023}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.20 (x64) (HKLM\...\{402EB961-5AED-472A-B785-B5AE9EF71286}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.19127.20222 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 140.0.3485.66 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 140.0.3485.66 - Microsoft Corporation) Hidden
Microsoft OneNote - sk-sk (HKLM\...\OneNoteFreeRetail - sk-sk) (Version: 16.0.19127.20222 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34433 (HKLM-x32\...\{804e7d66-ccc2-4c12-84ba-476da31d103d}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.25.28508 (HKLM-x32\...\{0FA68574-690B-4B00-89AA-B28946231449}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.25.28508 (HKLM-x32\...\{2BC3BD4D-FABA-4394-93C7-9AC82A263FE2}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34433 (HKLM\...\{E1902FC6-C423-4719-AB8A-AC7B2694B367}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34433 (HKLM\...\{382F1166-A409-4C5B-9B1E-85ED538B8291}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.20 (x64) (HKLM\...\{D330A645-92DF-4389-8324-B82FE3561498}) (Version: 64.80.39251 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.20 (x64) (HKLM-x32\...\{e033dc24-62c0-4f2c-928e-99122efab19d}) (Version: 8.0.20.35221 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19127.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Poly Lens (HKLM-x32\...\{E62BD969-711A-4534-BE3F-F60BFBACFB64}) (Version: 1.4.0.6062 - Poly, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)

Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-06-14] ()
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3912.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-06-14] ()
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m [2025-07-29] (Advanced Micro Devices Inc.) [Startup Task]
HP -> C:\Program Files\WindowsApps\AD2F1837.myHP_49.52537.7800.0_x64__v10z8vjag6ke6 [2025-09-12] (HP Inc.) [Startup Task]
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_2.53.364.0_x64__dt26b99r8h8gj [2025-08-23] (Realtek Semiconductor Corp)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.8.0.0_x64__v10z8vjag6ke6 [2025-07-03] (HP Inc.)
HP Power Manager -> C:\Program Files\WindowsApps\AD2F1837.HPPowerManager_3.1.18.0_x64__v10z8vjag6ke6 [2024-10-31] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.4.17.0_x64__v10z8vjag6ke6 [2025-08-22] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.47.41.0_x64__v10z8vjag6ke6 [2025-09-09] (HP Inc.)
HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_8.10.46.0_x64__v10z8vjag6ke6 [2025-07-24] (HP Inc.)
Local Artificial Intelligence Manager -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2025-09-16] ()
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2506.26002.0_x64__8wekyb3d8bbwe [2025-08-14] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2024-05-19] (Microsoft Corp.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20811.580.0_x64__8wekyb3d8bbwe [2025-08-23] (Microsoft Corporation)
Microsoft.HEVCVideoExtensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.4.15.0_x64__8wekyb3d8bbwe [2025-09-01] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2025-09-16] ()
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2025-09-16] ()
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.373.1736.0_x64__8wekyb3d8bbwe [2025-01-29] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_8000.616.304.0_x64__8wekyb3d8bbwe [2025-09-10] (Microsoft Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2384847340-952867437-1279697988-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\114.0.1.0\drivefsext.dll [2025-09-15] (Google LLC -> Google LLC.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-01-26 15:41 - 2024-01-26 15:41 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2024-01-26 15:41 - 2024-01-26 15:41 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2025-09-02] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2025-09-02] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-09-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.31.248 - 1.1.1.1
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt68cx21x64.sys
Wi-Fi: MediaTek Wi-Fi 6E MT7922 (RZ616) 160MHz PCIe Adapter -> mtkwl6ex.sys

vms_vsf: Hyper-V Virtual Switch Extension Filter
ms_l1vhlwf: Nested Network Virtualization
vms_vsp: Hyper-V Virtual Switch Extension Protocol

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2384847340-952867437-1279697988-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B13C712E-5F3B-4D50-BED8-AC0C67867E0E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{46FF5546-920D-4A82-892F-3D1F0A1914B6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{207FF0BA-4D00-447D-8427-9CBDA098563E}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24137.2402.2884.4157_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{47893453-764F-4172-B4F4-3449E65B050C}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24137.2402.2884.4157_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9CB4754-D72F-4074-BFF1-41A5C05ED25A}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.23.315\brchromium\132.0.6834.111\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{90A096DD-BD6E-4FF3-AD8C-5C7F433D8B3F}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.23.324\brchromium\132.0.6834.210\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{8D13A839-6D46-47E3-A189-28819CFED710}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.23.327\brchromium\132.0.6834.211\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{0C5932D2-72CF-41A4-8961-EE65DD365147}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.24.3261\brchromium\134.0.6998.178\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{AE98E059-4FB4-45D4-8980-CE29376371F8}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.24.3274\brchromium\134.0.6998.207\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{603AC0B2-FDFF-4909-ACCF-F5C9B781366D}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.25.2040\brchromium\136.0.7103.178\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{403FA020-A6FE-487A-B505-5E9CB864B4B3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A1290B9-65E7-41E4-9A94-569607171AD4}] => (Allow) C:\Program Files\HP\Sure Click\ApplicationSupport\chrome\4.4.26.1406\brchromium\138.0.7204.170\BrChrome.exe (Bromium UK Limited -> HP)
FirewallRules: [{388B85E8-92B0-4304-A955-BB9166C50711}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

12-09-2025 22:59:48 Windows Update
12-09-2025 22:59:49 Windows Update
12-09-2025 22:59:49 Windows Update
16-09-2025 08:54:57 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (09/15/2025 04:28:31 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: SAUL)
Description: Application or service 'Microsoft Office SDX Helper' could not be shut down.

Error: (09/14/2025 04:18:37 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: HotKeyServiceUWP.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FF6251AEB33

Error: (09/13/2025 11:03:45 AM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - There was a failure initializing profiling API attach infrastructure. This process will not allow a profiler to attach. HRESULT: 0x80004005. Process ID (decimal): 9616. Message ID: [0x2509].

Error: (09/13/2025 11:01:18 AM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - There was a failure initializing profiling API attach infrastructure. This process will not allow a profiler to attach. HRESULT: 0x80004005. Process ID (decimal): 16348. Message ID: [0x2509].

Error: (09/06/2025 02:05:14 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Názov chybnej aplikácie: HotKeyServiceUWP.exe, verzia: 8.10.48.359, časová značka: 0x68628408
Názov modulu s poruchou: ntdll.dll, verzia: 10.0.26100.4768, časová značka: 0x95c61958
Kód výnimky: 0xc0000005
Odchýlka poruchy: 0x000000000007a10d
Id poruchového procesu: 0x1498
Čas spustenia poruchovej aplikácie: 0x1dc1c33eebe139c
Cesta k poruchovej aplikácii: C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_826a6a74b0884865\HotKeyServiceUWP.exe
Cesta k poruchovému modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Id správy: 6857a0c4-134c-428d-9d2a-e6c5b025d615
Plný názov chybného balíka:
Identifikátor poruchovej aplikácie vzťahujúci sa na balík:

Error: (09/06/2025 02:05:14 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: HotKeyServiceUWP.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FFF6107A10D

Error: (09/06/2025 10:31:59 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: SAUL)
Description: Application or service 'Microsoft Office SDX Helper' could not be shut down.

Error: (09/02/2025 08:04:07 PM) (Source: CertEnroll) (EventID: 57) (User: NT AUTHORITY)
Description: The "Microsoft Pluton Cryptographic Provider" provider was not loaded because initialization failed.


System errors:
=============
Error: (09/16/2025 10:40:13 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -1878589247. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (09/16/2025 09:43:25 AM) (Source: DCOM) (EventID: 10010) (User: SAUL)
Description: The server MicrosoftWindows.Client.WebExperience_525.22301.90.0_x64__cw5n1h2txyewy!WidgetBoard.DashboardExtension did not register with DCOM within the required timeout.

Error: (09/16/2025 09:41:25 AM) (Source: DCOM) (EventID: 10010) (User: SAUL)
Description: The server MicrosoftWindows.Client.WebExperience_525.22301.90.0_x64__cw5n1h2txyewy!WidgetBoard.DashboardExtension did not register with DCOM within the required timeout.

Error: (09/16/2025 09:28:25 AM) (Source: DCOM) (EventID: 10010) (User: SAUL)
Description: The server MicrosoftWindows.Client.WebExperience_525.22301.90.0_x64__cw5n1h2txyewy!WidgetBoard.DashboardExtension did not register with DCOM within the required timeout.

Error: (09/16/2025 09:26:25 AM) (Source: DCOM) (EventID: 10010) (User: SAUL)
Description: The server MicrosoftWindows.Client.WebExperience_525.22301.90.0_x64__cw5n1h2txyewy!WidgetBoard.DashboardExtension did not register with DCOM within the required timeout.

Error: (09/16/2025 09:11:33 AM) (Source: DCOM) (EventID: 10010) (User: SAUL)
Description: The server MicrosoftWindows.Client.WebExperience_525.22301.90.0_x64__cw5n1h2txyewy!WidgetBoard.DashboardExtension did not register with DCOM within the required timeout.

Error: (09/16/2025 08:55:08 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba (0x80073d02 = The package could not be installed because resources it modifies are currently in use.): 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.

Error: (09/15/2025 10:40:13 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -1878589247. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931


Windows Defender:
================
Date: 2025-09-16 15:57:07
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Stop Reason: Scheduled scan was skipped because the last successful scan was within the last 7 days

Date: 2025-09-14 14:51:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Stop Reason: Scheduled scan was skipped because the last successful scan was within the last 7 days

Date: 2025-09-13 13:53:06
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Stop Reason: Scheduled scan was skipped because the last successful scan was within the last 7 days

Date: 2025-09-12 14:03:18
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Stop Reason: Scheduled scan was skipped because the last successful scan was within the last 7 days

Date: 2025-09-11 14:30:36
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Stop Reason: Scheduled scan was skipped because the last successful scan was within the last 7 days

CodeIntegrity:
===============
Date: 2025-02-07 21:27:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: HP V78 Ver. 01.10.00 04/09/2025
Motherboard: HP 8B5C
Processor: AMD Ryzen 3 7330U with Radeon Graphics
Percentage of memory in use: 42%
Total physical RAM: 15681.06 MB
Available physical RAM: 9001.83 MB
Total Virtual: 16705.06 MB
Available Virtual: 7484.82 MB

==================== Drives ================================

Drive c: (Windows ) (Fixed) (Total:475.81 GB) (Free:338.27 GB) (Model: KBG50ZNV512G KIOXIA) (Protected) NTFS
Drive g: (Google Drive) (Fixed) (Total:19 GB) (Free:17.76 GB) (Model: KBG50ZNV512G KIOXIA) FAT32

\\?\Volume{c42a7235-279c-4e77-ab2f-9f572c3caec3}\ (Windows RE Tools) (Fixed) (Total:0.85 GB) (Free:0.17 GB) NTFS
\\?\Volume{0ab8e5a7-bce4-4bbf-9a28-5943b9189e90}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 04C4C758)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119502
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola frst

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\MountPoints2: {895b026d-5d7b-11f0-9f19-bc7a5c0c7622} - "D:\HiSuiteDownLoader.exe"
Task: {FB1A0ED0-DA63-404C-950D-75685112C85C} - System32\Tasks\HPDataRetriever => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-application-info-collector_ver_4.675.11370\hp-data-retriever.exe (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2

EmptyTemp:
End
Uložte do C:\Users\igorv\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

5manager5
Návštěvník
Návštěvník
Příspěvky: 284
Registrován: 10 led 2009 21:21

Re: kontrola frst

#4 Příspěvek od 5manager5 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-09-2025
Ran by igorv (16-09-2025 22:03:26) Run:1
Running from C:\Users\igorv\Downloads
Loaded Profiles: igorv
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\...\MountPoints2: {895b026d-5d7b-11f0-9f19-bc7a5c0c7622} - "D:\HiSuiteDownLoader.exe"
Task: {FB1A0ED0-DA63-404C-950D-75685112C85C} - System32\Tasks\HPDataRetriever => C:\ProgramData\HP\Telemetry\collectors\hp-telemetry-application-info-collector_ver_4.675.11370\hp-data-retriever.exe (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKU\S-1-5-21-2384847340-952867437-1279697988-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{895b026d-5d7b-11f0-9f19-bc7a5c0c7622} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB1A0ED0-DA63-404C-950D-75685112C85C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB1A0ED0-DA63-404C-950D-75685112C85C}" => removed successfully
C:\WINDOWS\System32\Tasks\HPDataRetriever => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPDataRetriever" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 116347 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
igorv => 0 B

RecycleBin => 0 B
EmptyTemp: => 114 KB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 16-09-2025 22:04:13)

C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

==== End of Fixlog 22:04:13 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119502
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola frst

#5 Příspěvek od Rudy »

Vše smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět