Prosím o kontrolu logu. FRST
Napsal: 02 bře 2024 19:37
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-02-2024
Ran by Admin (administrator) on DESKTOP-A755G5L (Hewlett-Packard HP EliteBook 6930p) (02-03-2024 19:15:49)
Running from C:\Users\Admin\Downloads\FRST.exe
Loaded Profiles: Admin
Platform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(C:\Program Files\Microsoft\EdgeUpdate\Install\{5FDABA34-6D18-4AFD-A271-5D1774A8E505}\MicrosoftEdgeUpdateSetup_X86_1.3.185.17.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Temp\EU134F.tmp\MicrosoftEdgeUpdate.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\mpam-685b3743.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe <2>
(C:\Windows\Temp\mpam-685b3743.exe ->) (Access Denied) [File not signed] C:\Windows\Temp\EEFA3546-F9BE-4A76-9593-0EA2A10EDE6F\MpSigStub.exe
(explorer.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <14>
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(explorer.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\Install\{5FDABA34-6D18-4AFD-A271-5D1774A8E505}\MicrosoftEdgeUpdateSetup_X86_1.3.185.17.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Admin\AppData\Local\Microsoft\OneDrive\24.025.0204.0003\Microsoft.SharePoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(services.exe ->) (LSI Corporation -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x86__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [picon] => C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [358936 2009-07-15] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2009-11-11] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3029448 2023-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [58395664 2024-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Uninstall 23.107.0521.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\23.107.0521.0001" [0 2024-03-02] () <==== ATTENTION [zero byte File/Folder]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {F38F84E3-08F4-465F-BE7C-9926DC51CE84} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A646E074-FD7A-441E-B542-2353E63C7988} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFC30B70-C16F-4401-B4D9-BE05DE501678} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {91509F0F-C0F3-461A-B641-939F9E5A8171} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD292977-F17B-458D-9BB6-70076FCFDDEC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {52A4DF46-5336-40FE-BE27-64D0FC398031} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E548098A-8E2E-4D1D-AB3C-E3B9D4EA44A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F3DB6770-5AD5-4A25-816C-DB1626443999} - System32\Tasks\Opera scheduled Autoupdate 1643462562 => C:\Users\Admin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}: [DhcpDomain] tkrnet.cz
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\24974713: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\24974713: [DhcpDomain] tkrnet.cz
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\D6E4544553: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-02]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation -> LSI Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [299344 2023-04-05] (Microsoft Windows -> Microsoft Corporation)
R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2009-07-15] (Intel Corporation -> Intel Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [1988496 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [89704 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ADIHdAudAddService; C:\Windows\system32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\Windows\system32\DRIVERS\AGRSM.sys [1163328 2010-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [15544 2010-02-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\Windows\System32\drivers\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 MpKsl61631950; C:\Windows\system32\MpEngineStore\MpKslDrv.sys [57624 2023-05-26] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNs32; C:\Windows\System32\drivers\NETwNs32.sys [7518208 2019-12-07] (Microsoft Windows -> Intel Corporation)
R3 RICOH SmartCard Reader; C:\Windows\system32\DRIVERS\rismc32.sys [47488 2006-10-03] (Microsoft Windows Hardware Compatibility Publisher -> RICOH Company, Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [40400 2023-05-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [390424 2023-05-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [67864 2023-05-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-02 19:15 - 2024-03-02 19:19 - 000014827 _____ C:\Users\Admin\Downloads\FRST.txt
2024-03-02 19:14 - 2024-03-02 19:18 - 000000000 ____D C:\FRST
2024-03-02 19:13 - 2024-03-02 19:13 - 002085888 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2024-03-02 19:12 - 2024-03-02 19:12 - 002386944 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-02 19:18 - 2020-11-19 00:29 - 000003628 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-02 19:18 - 2020-11-19 00:29 - 000003504 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-02 19:15 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-02 19:11 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-02 19:10 - 2023-02-09 12:30 - 000002361 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-02 19:10 - 2021-12-12 10:42 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2536746229-464078455-3110854577-1001
2024-03-02 19:10 - 2021-04-04 17:13 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2536746229-464078455-3110854577-1001
2024-03-02 19:10 - 2021-04-04 17:07 - 001712334 _____ C:\Windows\system32\PerfStringBackup.INI
2024-03-02 19:10 - 2019-12-07 13:21 - 000732462 _____ C:\Windows\system32\perfh005.dat
2024-03-02 19:10 - 2019-12-07 13:21 - 000149206 _____ C:\Windows\system32\perfc005.dat
2024-03-02 19:10 - 2019-12-07 07:10 - 000000000 ____D C:\Windows\INF
2024-03-02 19:08 - 2019-12-07 07:12 - 000000000 ____D C:\Windows\AppReadiness
2024-03-02 19:07 - 2021-12-19 20:08 - 000000000 ____D C:\Windows\SystemTemp
2024-03-02 19:07 - 2020-11-19 00:29 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-02 18:59 - 2021-04-04 16:53 - 000008192 ___SH C:\DumpStack.log.tmp
2024-03-02 18:59 - 2020-11-19 00:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-03-02 18:58 - 2019-12-07 07:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-03-02 18:54 - 2021-04-04 17:51 - 000759712 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2024-03-02 18:41 - 2019-12-07 07:03 - 000000000 ____D C:\Windows\CbsTemp
==================== Files in the root of some directories ========
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\AtStart.txt
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\DSwitch.txt
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\QSwitch.txt
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-02-2024
Ran by Admin (02-03-2024 19:21:52)
Running from C:\Users\Admin\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2965 (X86) (2021-04-04 16:03:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-2536746229-464078455-3110854577-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2536746229-464078455-3110854577-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2536746229-464078455-3110854577-503 - Limited - Disabled)
Guest (S-1-5-21-2536746229-464078455-3110854577-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2536746229-464078455-3110854577-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company)
Intel(R) Management Engine Interface (HKLM\...\HECI) (Version: - Intel Corporation)
Intel® Active Management Technology (HKLM\...\MESOL) (Version: - Intel Corporation)
Java 8 Update 361 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 114.0.1823.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM\...\Microsoft EdgeWebView) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Excel MUI (Czech) 2013 (HKLM\...\{90150000-0016-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Czech) 2013 (HKLM\...\{90150000-00BA-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2013 (HKLM\...\{90150000-00E1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2013 (HKLM\...\{90150000-00E2-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2013 (HKLM\...\{90150000-002C-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM\...\{90150000-006E-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Standard 2013 (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Standard 2013 (HKLM\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\OneDriveSetup.exe) (Version: 24.025.0204.0003 - Microsoft Corporation)
Microsoft OneNote MUI (Czech) 2013 (HKLM\...\{90150000-00A1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2013 (HKLM\...\{90150000-001A-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2013 (HKLM\...\{90150000-0018-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2013 (HKLM\...\{90150000-0019-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{A68395A4-D60A-4A41-A82A-FAAB737BA62B}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\{4DC59BF3-0D72-3CE8-BFEF-1E8FAF689EB0}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Word MUI (Czech) 2013 (HKLM\...\{90150000-001B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QLBCASL (HKLM\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Roblox Player for Admin (HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\roblox-player) (Version: - Roblox Corporation)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}_Office15.STANDARD_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0016-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0018-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0019-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001A-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001B-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}_Office15.STANDARD_{0A504FDF-F8F7-4792-9360-1F45E38F005D}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0407-0000-0000000FF1CE}_Office15.STANDARD_{55A588B8-2D30-4B60-AB09-5DB57C592B81}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}_Office15.STANDARD_{1F79A96A-2A70-45B3-8A5C-79DA61952879}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}_Office15.STANDARD_{F1B4FD6F-C4F9-42B7-9B9E-BF3B24A8192D}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-002C-0405-0000-0000000FF1CE}_Office15.STANDARD_{7C7CDE76-1FF8-411F-9DA4-B4F91DBB58F5}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-006E-0405-0000-0000000FF1CE}_Office15.STANDARD_{DBBAB83F-8D50-4AFB-B0FF-8B90CA68B215}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00A1-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00BA-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00E1-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00E2-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.7255 - Analog Devices)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.17.4 - Synaptics Incorporated)
Update for Windows 10 (KB5001716) (HKLM\...\{6B127600-DFEF-4AC6-95FE-C6A30F690708}) (Version: 8.92.0.0 - Microsoft Corporation)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2022-09-04] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x86__8wekyb3d8bbwe [2023-03-18] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0 [2023-05-18] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2536746229-464078455-3110854577-1001_Classes\CLSID\{E7629152-0A34-4487-B787-5D1144304455}\localserver32 -> no filepath
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-04-04 17:19 - 2009-07-15 09:06 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files\Common Files\Intel\Privacy Icon\UNS\xerces-c_2_7.dll
2021-04-04 17:19 - 2009-07-15 10:51 - 000065536 _____ (Intel Corporation) [File not signed] [File is in use] <==== ATTENTION C:\Program Files\Common Files\Intel\Privacy Icon\cs-CZ\PrivacyIconClient.resources.dll
2021-04-04 17:19 - 2009-07-15 09:01 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files\Common Files\Intel\Privacy Icon\UNS\StatusStrings.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 07:12 - 2019-12-07 07:10 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 185.162.24.55 - 185.163.180.119
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{56A830C8-3AB5-4D2C-BCA0-FEBD91D9941F}C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{E7EC008A-9C87-4F18-8029-3FB01F888964}C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe
FirewallRules: [{D68E02FA-B5D1-41AF-89E3-EA34110055A2}] => (Allow) C:\Users\Admin\AppData\Local\Programs\Opera\97.0.4719.83\opera.exe => No File
FirewallRules: [{00D36159-9E45-40D4-9C6D-5A59858147AD}] => (Allow) C:\Users\Admin\AppData\Local\Programs\Opera\98.0.4759.39\opera.exe => No File
FirewallRules: [{C5010A60-0250-4134-AA36-9EE62D8E6825}] => (Allow) C:\Program Files\Microsoft\EdgeWebView\Application\113.0.1774.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D665AE58-BD8D-4F2D-A54F-32C303DB0A8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{34C9FD7E-7462-4241-BA29-F166B2DFB605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{01EB94ED-B976-4C4A-9CCA-CE4C6A0ABB38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25464512-A994-4808-8C11-D551D8037554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CF3B8C8E-B3B2-4D01-87BC-2A89AFBD9443}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A29629C3-2B18-4BB0-AFD6-C62DDF279F09}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{214849D1-42B9-4E40-B1DB-69510DDAB695}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{97C1D9E3-6CDB-497E-9DE9-8F4C31696918}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{974993BB-0684-4F70-9D2D-B8621624C575}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1EE05C69-577C-411F-87BE-C3205036F765}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C17C3307-EBE2-4D4B-9412-AFBE6B6BB757}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6DFFD17B-FA23-451B-B2DB-C6D09A0F155A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{803DB179-B7C6-4525-B241-5A97D3230401}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D72E9C5-A43F-492E-B449-56C3DB3B3DE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-05-2023 18:00:39 Instalační služba modulů systému Windows
22-05-2023 06:55:08 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Fingerprint Sensor
Description: Fingerprint Sensor
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (03/02/2024 07:30:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x115c
Čas spuštění chybující aplikace: 0x01da6ccfa13d70d9
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: eed7bc5e-bfe4-40f0-9a63-8b7156eb8d08
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 07:07:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1710
Čas spuštění chybující aplikace: 0x01da6ccc62861ea0
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: 92893d39-1cab-426e-9f09-ae88fe81c1b2
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 07:00:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LMS.exe, verze: 4.2.0.1017, časové razítko: 0x4a5e24e4
Název chybujícího modulu: LMS.exe, verze: 4.2.0.1017, časové razítko: 0x4a5e24e4
Kód výjimky: 0xc0000005
Posun chyby: 0x00014b42
ID chybujícího procesu: 0x924
Čas spuštění chybující aplikace: 0x01da6ccb727ffd70
Cesta k chybující aplikaci: C:\Program Files\Intel\AMT\LMS.exe
Cesta k chybujícímu modulu: C:\Program Files\Intel\AMT\LMS.exe
ID zprávy: bc2d4797-d301-4320-84d8-be017a84b907
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/02/2024 06:58:24 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (03/02/2024 06:58:24 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (03/02/2024 06:51:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1704
Čas spuštění chybující aplikace: 0x01da6cca37ae38c1
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: cdc196cc-6d09-4ab2-9cee-66b5a159880c
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 06:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1690
Čas spuštění chybující aplikace: 0x01da6cc91d6abc29
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: ce6e29c6-7876-4d44-b845-f7cf4d7cbcdb
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 06:40:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1894
Čas spuštění chybující aplikace: 0x01da6cc8ad0fffba
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: 2a17f121-e4ef-458a-b574-9ee12e8cee99
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (03/02/2024 07:10:27 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Centrum zabezpečení přestala během spouštění reagovat.
Error: (03/02/2024 07:07:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Služba úložiště přestala během spouštění reagovat.
Error: (03/02/2024 07:05:06 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/02/2024 07:01:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (03/02/2024 06:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.405.925.0) – Aktuální kanál (široká distribuce).
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2023-05-25 18:58:08
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7C01DFD8-BCEA-41A8-8DD9-5B21F2FB0AB0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-23 20:10:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2E4E671D-2160-4630-9295-5D035C580C81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-22 20:10:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CA5884EF-A8A2-42AD-99DC-1973A3D92725}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-22 06:55:03
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CC543932-C989-4394-BB80-50721E0ADA36}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-20 20:10:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7900EABA-8AA6-47C2-9F5F-5E44E107D2D4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 18:58:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.405.925.0
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24010.10
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2024-03-02 18:58:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.405.925.0
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24010.10
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2023-06-09 12:13:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-22 04:13:38
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\MusNotificationUx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Hewlett-Packard 68PCU Ver. F.13 09/11/2009
Motherboard: Hewlett-Packard 30DB
Processor: Intel(R) Core(TM)2 Duo CPU T9550 @ 2.66GHz
Percentage of memory in use: 87%
Total physical RAM: 2972.26 MB
Available physical RAM: 371.09 MB
Total Virtual: 4636.26 MB
Available Virtual: 1604.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.83 GB) (Free:182.01 GB) (Model: WDC WD2500BEVS-00UST0) NTFS
\\?\Volume{8c85725c-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 8C85725C)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Admin (administrator) on DESKTOP-A755G5L (Hewlett-Packard HP EliteBook 6930p) (02-03-2024 19:15:49)
Running from C:\Users\Admin\Downloads\FRST.exe
Loaded Profiles: Admin
Platform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(C:\Program Files\Microsoft\EdgeUpdate\Install\{5FDABA34-6D18-4AFD-A271-5D1774A8E505}\MicrosoftEdgeUpdateSetup_X86_1.3.185.17.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Temp\EU134F.tmp\MicrosoftEdgeUpdate.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\mpam-685b3743.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe <2>
(C:\Windows\Temp\mpam-685b3743.exe ->) (Access Denied) [File not signed] C:\Windows\Temp\EEFA3546-F9BE-4A76-9593-0EA2A10EDE6F\MpSigStub.exe
(explorer.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <14>
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(explorer.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\Install\{5FDABA34-6D18-4AFD-A271-5D1774A8E505}\MicrosoftEdgeUpdateSetup_X86_1.3.185.17.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Admin\AppData\Local\Microsoft\OneDrive\24.025.0204.0003\Microsoft.SharePoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(services.exe ->) (LSI Corporation -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x86__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [picon] => C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [358936 2009-07-15] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2009-11-11] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3029448 2023-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [58395664 2024-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\RunOnce: [Uninstall 23.107.0521.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\23.107.0521.0001" [0 2024-03-02] () <==== ATTENTION [zero byte File/Folder]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {F38F84E3-08F4-465F-BE7C-9926DC51CE84} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A646E074-FD7A-441E-B542-2353E63C7988} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFC30B70-C16F-4401-B4D9-BE05DE501678} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {91509F0F-C0F3-461A-B641-939F9E5A8171} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD292977-F17B-458D-9BB6-70076FCFDDEC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {52A4DF46-5336-40FE-BE27-64D0FC398031} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E548098A-8E2E-4D1D-AB3C-E3B9D4EA44A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1255000 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F3DB6770-5AD5-4A25-816C-DB1626443999} - System32\Tasks\Opera scheduled Autoupdate 1643462562 => C:\Users\Admin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}: [DhcpDomain] tkrnet.cz
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\24974713: [DhcpNameServer] 185.162.24.55 185.163.180.119 185.162.24.98
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\24974713: [DhcpDomain] tkrnet.cz
Tcpip\..\Interfaces\{bf4e4b0c-fdd6-458e-9a5d-92a2e7bef77d}\D6E4544553: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-02]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation -> LSI Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [299344 2023-04-05] (Microsoft Windows -> Microsoft Corporation)
R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2009-07-15] (Intel Corporation -> Intel Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [1988496 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [89704 2023-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ADIHdAudAddService; C:\Windows\system32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\Windows\system32\DRIVERS\AGRSM.sys [1163328 2010-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [15544 2010-02-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\Windows\System32\drivers\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 MpKsl61631950; C:\Windows\system32\MpEngineStore\MpKslDrv.sys [57624 2023-05-26] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNs32; C:\Windows\System32\drivers\NETwNs32.sys [7518208 2019-12-07] (Microsoft Windows -> Intel Corporation)
R3 RICOH SmartCard Reader; C:\Windows\system32\DRIVERS\rismc32.sys [47488 2006-10-03] (Microsoft Windows Hardware Compatibility Publisher -> RICOH Company, Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [40400 2023-05-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [390424 2023-05-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [67864 2023-05-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-02 19:15 - 2024-03-02 19:19 - 000014827 _____ C:\Users\Admin\Downloads\FRST.txt
2024-03-02 19:14 - 2024-03-02 19:18 - 000000000 ____D C:\FRST
2024-03-02 19:13 - 2024-03-02 19:13 - 002085888 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2024-03-02 19:12 - 2024-03-02 19:12 - 002386944 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-02 19:18 - 2020-11-19 00:29 - 000003628 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-02 19:18 - 2020-11-19 00:29 - 000003504 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-02 19:15 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-02 19:11 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-02 19:10 - 2023-02-09 12:30 - 000002361 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-02 19:10 - 2021-12-12 10:42 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2536746229-464078455-3110854577-1001
2024-03-02 19:10 - 2021-04-04 17:13 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2536746229-464078455-3110854577-1001
2024-03-02 19:10 - 2021-04-04 17:07 - 001712334 _____ C:\Windows\system32\PerfStringBackup.INI
2024-03-02 19:10 - 2019-12-07 13:21 - 000732462 _____ C:\Windows\system32\perfh005.dat
2024-03-02 19:10 - 2019-12-07 13:21 - 000149206 _____ C:\Windows\system32\perfc005.dat
2024-03-02 19:10 - 2019-12-07 07:10 - 000000000 ____D C:\Windows\INF
2024-03-02 19:08 - 2019-12-07 07:12 - 000000000 ____D C:\Windows\AppReadiness
2024-03-02 19:07 - 2021-12-19 20:08 - 000000000 ____D C:\Windows\SystemTemp
2024-03-02 19:07 - 2020-11-19 00:29 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-02 18:59 - 2021-04-04 16:53 - 000008192 ___SH C:\DumpStack.log.tmp
2024-03-02 18:59 - 2020-11-19 00:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-03-02 18:58 - 2019-12-07 07:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-03-02 18:54 - 2021-04-04 17:51 - 000759712 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2024-03-02 18:41 - 2019-12-07 07:03 - 000000000 ____D C:\Windows\CbsTemp
==================== Files in the root of some directories ========
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\AtStart.txt
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\DSwitch.txt
2021-04-04 19:41 - 2021-04-04 19:41 - 000000000 _____ () C:\Users\Admin\AppData\Local\QSwitch.txt
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-02-2024
Ran by Admin (02-03-2024 19:21:52)
Running from C:\Users\Admin\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2965 (X86) (2021-04-04 16:03:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-2536746229-464078455-3110854577-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2536746229-464078455-3110854577-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2536746229-464078455-3110854577-503 - Limited - Disabled)
Guest (S-1-5-21-2536746229-464078455-3110854577-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2536746229-464078455-3110854577-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.14.1 - Hewlett-Packard Company)
Intel(R) Management Engine Interface (HKLM\...\HECI) (Version: - Intel Corporation)
Intel® Active Management Technology (HKLM\...\MESOL) (Version: - Intel Corporation)
Java 8 Update 361 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 114.0.1823.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM\...\Microsoft EdgeWebView) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Excel MUI (Czech) 2013 (HKLM\...\{90150000-0016-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Czech) 2013 (HKLM\...\{90150000-00BA-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2013 (HKLM\...\{90150000-00E1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2013 (HKLM\...\{90150000-00E2-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2013 (HKLM\...\{90150000-002C-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM\...\{90150000-006E-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Standard 2013 (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Standard 2013 (HKLM\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\OneDriveSetup.exe) (Version: 24.025.0204.0003 - Microsoft Corporation)
Microsoft OneNote MUI (Czech) 2013 (HKLM\...\{90150000-00A1-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2013 (HKLM\...\{90150000-001A-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2013 (HKLM\...\{90150000-0018-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2013 (HKLM\...\{90150000-0019-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{A68395A4-D60A-4A41-A82A-FAAB737BA62B}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\{4DC59BF3-0D72-3CE8-BFEF-1E8FAF689EB0}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Word MUI (Czech) 2013 (HKLM\...\{90150000-001B-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QLBCASL (HKLM\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Roblox Player for Admin (HKU\S-1-5-21-2536746229-464078455-3110854577-1001\...\roblox-player) (Version: - Roblox Corporation)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}_Office15.STANDARD_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0016-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0018-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0019-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001A-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001B-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}_Office15.STANDARD_{0A504FDF-F8F7-4792-9360-1F45E38F005D}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0407-0000-0000000FF1CE}_Office15.STANDARD_{55A588B8-2D30-4B60-AB09-5DB57C592B81}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}_Office15.STANDARD_{1F79A96A-2A70-45B3-8A5C-79DA61952879}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}_Office15.STANDARD_{F1B4FD6F-C4F9-42B7-9B9E-BF3B24A8192D}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-002C-0405-0000-0000000FF1CE}_Office15.STANDARD_{7C7CDE76-1FF8-411F-9DA4-B4F91DBB58F5}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-006E-0405-0000-0000000FF1CE}_Office15.STANDARD_{DBBAB83F-8D50-4AFB-B0FF-8B90CA68B215}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00A1-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00BA-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00E1-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-00E2-0405-0000-0000000FF1CE}_Office15.STANDARD_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft) Hidden
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.7255 - Analog Devices)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.17.4 - Synaptics Incorporated)
Update for Windows 10 (KB5001716) (HKLM\...\{6B127600-DFEF-4AC6-95FE-C6A30F690708}) (Version: 8.92.0.0 - Microsoft Corporation)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2022-09-04] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x86__8wekyb3d8bbwe [2023-03-18] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0 [2023-05-18] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2536746229-464078455-3110854577-1001_Classes\CLSID\{E7629152-0A34-4487-B787-5D1144304455}\localserver32 -> no filepath
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-04-04 17:19 - 2009-07-15 09:06 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files\Common Files\Intel\Privacy Icon\UNS\xerces-c_2_7.dll
2021-04-04 17:19 - 2009-07-15 10:51 - 000065536 _____ (Intel Corporation) [File not signed] [File is in use] <==== ATTENTION C:\Program Files\Common Files\Intel\Privacy Icon\cs-CZ\PrivacyIconClient.resources.dll
2021-04-04 17:19 - 2009-07-15 09:01 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files\Common Files\Intel\Privacy Icon\UNS\StatusStrings.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 07:12 - 2019-12-07 07:10 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2536746229-464078455-3110854577-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 185.162.24.55 - 185.163.180.119
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{56A830C8-3AB5-4D2C-BCA0-FEBD91D9941F}C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{E7EC008A-9C87-4F18-8029-3FB01F888964}C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\users\admin\appdata\roaming\.tlauncher\jvms\jre1.8.0_111\bin\javaw.exe
FirewallRules: [{D68E02FA-B5D1-41AF-89E3-EA34110055A2}] => (Allow) C:\Users\Admin\AppData\Local\Programs\Opera\97.0.4719.83\opera.exe => No File
FirewallRules: [{00D36159-9E45-40D4-9C6D-5A59858147AD}] => (Allow) C:\Users\Admin\AppData\Local\Programs\Opera\98.0.4759.39\opera.exe => No File
FirewallRules: [{C5010A60-0250-4134-AA36-9EE62D8E6825}] => (Allow) C:\Program Files\Microsoft\EdgeWebView\Application\113.0.1774.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D665AE58-BD8D-4F2D-A54F-32C303DB0A8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{34C9FD7E-7462-4241-BA29-F166B2DFB605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{01EB94ED-B976-4C4A-9CCA-CE4C6A0ABB38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25464512-A994-4808-8C11-D551D8037554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CF3B8C8E-B3B2-4D01-87BC-2A89AFBD9443}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A29629C3-2B18-4BB0-AFD6-C62DDF279F09}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{214849D1-42B9-4E40-B1DB-69510DDAB695}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{97C1D9E3-6CDB-497E-9DE9-8F4C31696918}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{974993BB-0684-4F70-9D2D-B8621624C575}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1EE05C69-577C-411F-87BE-C3205036F765}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C17C3307-EBE2-4D4B-9412-AFBE6B6BB757}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6DFFD17B-FA23-451B-B2DB-C6D09A0F155A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{803DB179-B7C6-4525-B241-5A97D3230401}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D72E9C5-A43F-492E-B449-56C3DB3B3DE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.113.3210.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-05-2023 18:00:39 Instalační služba modulů systému Windows
22-05-2023 06:55:08 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Fingerprint Sensor
Description: Fingerprint Sensor
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (03/02/2024 07:30:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x115c
Čas spuštění chybující aplikace: 0x01da6ccfa13d70d9
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: eed7bc5e-bfe4-40f0-9a63-8b7156eb8d08
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 07:07:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1710
Čas spuštění chybující aplikace: 0x01da6ccc62861ea0
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: 92893d39-1cab-426e-9f09-ae88fe81c1b2
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 07:00:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LMS.exe, verze: 4.2.0.1017, časové razítko: 0x4a5e24e4
Název chybujícího modulu: LMS.exe, verze: 4.2.0.1017, časové razítko: 0x4a5e24e4
Kód výjimky: 0xc0000005
Posun chyby: 0x00014b42
ID chybujícího procesu: 0x924
Čas spuštění chybující aplikace: 0x01da6ccb727ffd70
Cesta k chybující aplikaci: C:\Program Files\Intel\AMT\LMS.exe
Cesta k chybujícímu modulu: C:\Program Files\Intel\AMT\LMS.exe
ID zprávy: bc2d4797-d301-4320-84d8-be017a84b907
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/02/2024 06:58:24 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (03/02/2024 06:58:24 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (03/02/2024 06:51:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1704
Čas spuštění chybující aplikace: 0x01da6cca37ae38c1
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: cdc196cc-6d09-4ab2-9cee-66b5a159880c
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 06:43:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1690
Čas spuštění chybující aplikace: 0x01da6cc91d6abc29
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: ce6e29c6-7876-4d44-b845-f7cf4d7cbcdb
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (03/02/2024 06:40:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxTsr.exe, verze: 16.0.14326.21434, časové razítko: 0x644ce6c9
Název chybujícího modulu: HxOutlookBackground.dll, verze: 16.0.14326.21434, časové razítko: 0x644ce6c3
Kód výjimky: 0x01821355
Posun chyby: 0x0001faec
ID chybujícího procesu: 0x1894
Čas spuštění chybující aplikace: 0x01da6cc8ad0fffba
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxTsr.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe\HxOutlookBackground.dll
ID zprávy: 2a17f121-e4ef-458a-b574-9ee12e8cee99
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21434.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (03/02/2024 07:10:27 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Centrum zabezpečení přestala během spouštění reagovat.
Error: (03/02/2024 07:07:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Služba úložiště přestala během spouštění reagovat.
Error: (03/02/2024 07:05:06 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/02/2024 07:01:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (03/02/2024 06:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.405.925.0) – Aktuální kanál (široká distribuce).
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/02/2024 06:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A755G5L)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2023-05-25 18:58:08
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7C01DFD8-BCEA-41A8-8DD9-5B21F2FB0AB0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-23 20:10:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2E4E671D-2160-4630-9295-5D035C580C81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-22 20:10:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CA5884EF-A8A2-42AD-99DC-1973A3D92725}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-22 06:55:03
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CC543932-C989-4394-BB80-50721E0ADA36}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-05-20 20:10:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7900EABA-8AA6-47C2-9F5F-5E44E107D2D4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 19:16:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
Date: 2024-03-02 18:58:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.405.925.0
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24010.10
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2024-03-02 18:58:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.405.925.0
Předchozí verze bezpečnostních informací: 1.391.928.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24010.10
Předchozí verze modulu: 1.1.20300.3
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2023-06-09 12:13:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-22 04:13:38
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\MusNotificationUx.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Hewlett-Packard 68PCU Ver. F.13 09/11/2009
Motherboard: Hewlett-Packard 30DB
Processor: Intel(R) Core(TM)2 Duo CPU T9550 @ 2.66GHz
Percentage of memory in use: 87%
Total physical RAM: 2972.26 MB
Available physical RAM: 371.09 MB
Total Virtual: 4636.26 MB
Available Virtual: 1604.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.83 GB) (Free:182.01 GB) (Model: WDC WD2500BEVS-00UST0) NTFS
\\?\Volume{8c85725c-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 8C85725C)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
