Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu- velmi pomalý počítač.

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Prosím o kontrolu logu- velmi pomalý počítač.

#1 Příspěvek od ondbou »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by ondre (administrator) on DESKTOP-BG5JJNF (TOSHIBA Satellite A660) (16-02-2020 08:20:08)
Running from C:\Users\ondre\Desktop
Loaded Profiles: ondre & Janka & Ostatni (Available Profiles: ondre & Janka & Ostatni)
Platform: Windows 10 Home Version 1903 18362.356 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(bookingDesktopApp.) [File not signed] C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(HP Printing Korea Co., Ltd.) [File not signed] C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(HP Printing Korea Co., Ltd.) [File not signed] C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Janka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ondre\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ondre\AppData\Local\Microsoft\Teams\current\Teams.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ondre\AppData\Local\Microsoft\Teams\current\Teams.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Ostatni\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Ostatni\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\UpdateAssistant\UpdateAssistant.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\UpdateAssistant\UpdateAssistant.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotification.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotificationUx.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotificationUx.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
0 C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1519016 2010-07-28] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [97509120 2020-01-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [AvastBrowserAutoLaunch_0CE231CE0ED3750FB84C2E31233425D0] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47552040 2019-12-22] (Google LLC -> )
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2146536 2019-04-09] (TomTom International BV -> TomTom)
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ondre\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ondre\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\RunOnce: [Uninstall 19.232.1124.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ondre\AppData\Local\Microsoft\OneDrive\19.232.1124.0005\amd64"
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\RunOnce: [Uninstall 19.232.1124.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ondre\AppData\Local\Microsoft\OneDrive\19.232.1124.0005"
HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\Run: [AvastBrowserAutoLaunch_5BE222AFE8AD82167FFC8C56883693CF] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Janka\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Janka\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\RunOnce: [Uninstall 19.232.1124.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Janka\AppData\Local\Microsoft\OneDrive\19.232.1124.0005\amd64"
HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\RunOnce: [Uninstall 19.232.1124.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Janka\AppData\Local\Microsoft\OneDrive\19.232.1124.0005"
HKU\S-1-5-21-265624995-536550331-1996926755-1003\...\Run: [AvastBrowserAutoLaunch_85C5741F884D326D2E4BC6F6DAA6B5D2] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-265624995-536550331-1996926755-1003\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session --flag-switches-begin --flag-switches-end - (the data entry has 102 more characters).
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\79.0.3060.80\Installer\chrmstp.exe [2020-02-13] (AVAST Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume2autocheck autochk /p \??\C:autocheck autochk *
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1FC6EE4A-7E7F-425D-B771-6057E4CE9417} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27366472 2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {283D59D4-C616-4D36-BED5-32F405A99285} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {2B223DFB-966D-44BD-A441-149F1495D803} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {2CF24D9D-6FFC-46FB-BF1F-0A043CD33033} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {34FA4FC1-F4CA-4AE8-BA44-A8AEBD02B183} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {42B5AF8D-E159-473C-AFF5-69022B776410} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27366472 2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {5098F203-E287-4F8C-AAB9-B213E6D07605} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2167704 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C70E92D-CBF6-47A1-AFA4-DE035FE688AA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2167704 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F8C75FA-096A-411C-B6B3-177F30C42673} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2349960 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6CDF9DD5-1174-43EB-B926-DFF12745EAF5} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [1333472 2016-01-28] (Samsung Electronics CO., LTD. -> )
Task: {7116DD0A-78FA-403A-991B-16D6E244EF39} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {95919C76-C864-4D66-9D91-396C8E36898F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {96B9EC73-A0E8-4615-97D1-E401BCEF587F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8B574FF-857E-4FCA-B621-45FD7F11E7FE} - System32\Tasks\bookingDesktopAppUpdateTaskMachineCore => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-01-02] (bookingDesktopApp.) [File not signed]
Task: {AA130AD9-02D2-44EC-B696-6DECF1E61B6A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AEA9AC64-AD7A-40D3-B287-2F827DB39C3C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {B13E92A9-1472-410E-802C-7EFF11581334} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {B97DA5D8-5967-4CE9-813C-E4C153479B5B} - System32\Tasks\bookingDesktopAppUpdateTaskMachineUA => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-01-02] (bookingDesktopApp.) [File not signed]
Task: {C014CE2E-D590-4DCD-A149-572A5122BFB7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D00BB801-251C-4A09-BCA1-9AE64E56EC4C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {EAACCFAA-B853-4E12-B871-7CFC032F6521} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{19c5cd92-1ab0-47af-bacf-3409add47b07}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{32d9ef43-4b60-4379-8728-c3febed71be2}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=3 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-01-02] (bookingDesktopApp.) [File not signed]
FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=9 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-01-02] (bookingDesktopApp.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default [2020-02-16]
CHR Notifications: Default -> hxxps://en.softonic.com; hxxps://peetube.cc; hxxps://www.tipsport.cz; hxxps://www.tomtom.com
CHR DefaultSearchURL: Default -> hxxps://search.seznam.cz/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> seznam.cz
CHR DefaultSuggestURL: Default -> hxxps://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Extension: (Prezentace) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-31]
CHR Extension: (No-Script Suite Lite) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahnanjpbkghcdgmlchbcfoiefnifjeni [2019-07-16]
CHR Extension: (Dokumenty) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-31]
CHR Extension: (Disk Google) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-31]
CHR Extension: (YouTube) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-31]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-31]
CHR Extension: (Tabulky) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-02-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-15]
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-21]
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-21]
CHR HKU\S-1-5-21-265624995-536550331-1996926755-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\79.0.3060.80\elevation_service.exe [968552 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S2 bookingdesktopapp; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-01-02] (bookingDesktopApp.) [File not signed]
S3 bookingdesktopappm; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-01-02] (bookingDesktopApp.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11597176 2020-02-05] (Microsoft Corporation -> Microsoft Corporation)
R2 Samsung Network Fax Server; C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-01-07] (Samsung Electronics CO., LTD. -> )
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [711168 2013-07-31] (Microsoft Windows Hardware Compatibility Publisher -> DiBcom)
R3 enecir; C:\WINDOWS\system32\DRIVERS\enecir.sys [71168 2013-11-03] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 enecirhid; C:\WINDOWS\system32\DRIVERS\enecirhid.sys [24064 2013-11-03] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [44952 2017-04-27] (Toshiba Client Solutions Co.,Ltd. -> Toshiba Client Solutions Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-16 08:20 - 2020-02-16 08:29 - 000034556 _____ C:\Users\ondre\Desktop\FRST.txt
2020-02-16 08:01 - 2020-02-16 08:01 - 000000000 ____D C:\Users\ondre\AppData\Roaming\Microsoft Teams
2020-02-16 08:00 - 2020-02-16 08:00 - 002279424 _____ (Farbar) C:\Users\ondre\Downloads\FRST64 (2).exe
2020-02-16 08:00 - 2020-02-16 08:00 - 002279424 _____ (Farbar) C:\Users\ondre\Desktop\FRST64 (1).exe
2020-02-14 15:12 - 2020-02-14 15:12 - 000000000 ____D C:\Users\Ostatni\AppData\Local\Microsoft Help
2020-02-14 14:55 - 2020-02-14 14:55 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2020-02-14 14:26 - 2020-02-14 14:26 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2020-02-14 14:26 - 2020-02-14 12:29 - 000066696 _____ C:\WINDOWS\VIVALDII.tt2
2020-02-14 14:26 - 2020-02-14 12:29 - 000056596 _____ C:\WINDOWS\HARLOWSI.tt2
2020-02-14 14:25 - 2020-02-14 12:28 - 000076588 _____ C:\WINDOWS\ALGER.tt2
2020-02-14 14:25 - 2020-02-14 12:28 - 000047644 _____ C:\WINDOWS\BAUHS93.tt2
2020-02-14 10:52 - 2020-02-14 10:52 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-02-14 10:46 - 2020-02-14 10:48 - 005509624 _____ (Microsoft Corporation) C:\Users\Ostatni\Downloads\Setup.Def.cs-cz_O365ProPlusRetail_0d1242d3-080d-4a41-9ea3-ab07e22b22d9_TX_DB_Platform_def_b_64_.exe
2020-02-14 10:45 - 2020-02-14 10:45 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2020-02-13 12:55 - 2020-02-13 12:55 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-02-12 07:36 - 2020-01-16 06:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-02-12 07:36 - 2020-01-16 05:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-02-03 15:04 - 2020-02-14 15:16 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-02-03 14:11 - 2020-02-03 14:11 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2020-02-03 14:11 - 2020-02-03 14:11 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2020-02-03 13:10 - 2020-02-03 13:10 - 000013634 _____ C:\Users\Janka\Downloads\Evidence pracovní doby 2020 - pedagogové.xlsx
2020-02-03 12:22 - 2020-02-03 12:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-02-03 11:54 - 2020-02-14 15:16 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-03 11:54 - 2020-02-03 11:54 - 000000000 ____D C:\Users\ondre\AppData\Local\Microsoft Help
2020-02-03 11:36 - 2020-02-03 11:50 - 633319536 _____ (Microsoft Corporation) C:\Users\ondre\Downloads\microsoft-office-2010_MSOffice201064bit (1).exe
2020-02-03 10:55 - 2020-02-03 11:05 - 633319536 _____ (Microsoft Corporation) C:\Users\ondre\Downloads\microsoft-office-2010_MSOffice201064bit.exe
2020-01-31 16:41 - 2020-01-31 16:42 - 035299688 _____ (Microsoft Corporation) C:\Users\Janka\Downloads\OneDriveSetup.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-16 08:30 - 2019-10-08 06:30 - 000003462 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-16 08:30 - 2019-10-08 06:30 - 000003238 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-16 08:30 - 2019-09-23 23:34 - 000002914 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1003
2020-02-16 08:30 - 2019-09-23 23:34 - 000002914 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1002
2020-02-16 08:30 - 2019-09-23 23:34 - 000002914 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1001
2020-02-16 08:30 - 2019-09-23 23:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-02-16 08:26 - 2019-06-28 10:14 - 000000000 ____D C:\FRST
2020-02-16 08:25 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-16 08:02 - 2019-02-09 15:54 - 000000000 ____D C:\Users\ondre\AppData\Local\SquirrelTemp
2020-02-16 07:57 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:44 - 2019-03-11 11:24 - 000000000 ____D C:\Users\ondre\AppData\Local\CrashDumps
2020-02-16 07:40 - 2019-12-03 09:00 - 000000000 ___HD C:\OneDriveTemp
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-16 07:39 - 2019-09-23 22:42 - 000000000 ____D C:\Users\ondre
2020-02-16 07:35 - 2019-09-23 22:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-14 17:00 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-14 15:16 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-02-14 15:12 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-02-14 11:56 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-14 10:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-02-14 09:46 - 2019-09-23 23:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-14 09:46 - 2018-12-31 16:10 - 000073232 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll
2020-02-14 09:46 - 2018-12-31 15:04 - 000017920 _____ C:\WINDOWS\system32\rpcnetp.exe
2020-02-13 19:24 - 2018-12-31 15:06 - 000017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.dll
2020-02-13 19:23 - 2018-12-31 15:04 - 000017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.exe
2020-02-13 19:22 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-02-13 17:20 - 2019-09-23 23:34 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-02-13 17:20 - 2019-09-23 23:34 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-02-13 17:20 - 2018-12-31 16:08 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-02-13 17:20 - 2018-12-31 16:08 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-02-13 17:09 - 2019-02-02 16:51 - 000000000 ____D C:\Install
2020-02-13 12:30 - 2019-09-23 22:42 - 000000000 ____D C:\Users\Janka
2020-02-13 12:09 - 2019-01-02 14:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-02-13 12:08 - 2019-01-02 14:47 - 120407888 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-02-12 07:09 - 2019-09-23 23:34 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-02-10 19:55 - 2019-09-23 22:42 - 000000000 ____D C:\Users\Ostatni
2020-02-09 18:47 - 2019-07-25 07:27 - 000000000 ____D C:\Users\ondre\AppData\Roaming\vlc
2020-02-07 15:17 - 2019-09-08 11:55 - 000000000 ____D C:\Users\ondre\AppData\Local\ElevatedDiagnostics
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-03 21:56 - 2019-03-19 05:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-02-03 21:56 - 2019-03-19 05:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-03 19:57 - 2019-01-14 16:31 - 000000000 ____D C:\Users\Ostatni\AppData\Local\CrashDumps
2020-02-03 19:25 - 2019-09-23 22:30 - 000399560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-02-03 15:42 - 2018-12-31 10:41 - 000000167 _____ C:\WINDOWS\win.ini
2020-02-03 14:27 - 2019-04-30 09:00 - 000000000 ____D C:\Janka
2020-01-31 16:54 - 2018-12-31 16:14 - 000000000 ____D C:\Users\Janka\AppData\Local\ConnectedDevicesPlatform
2020-01-31 16:50 - 2019-01-19 13:02 - 000000000 ____D C:\Users\Janka\AppData\Local\PlaceholderTileLogoFolder
2020-01-31 16:50 - 2018-12-31 16:15 - 000000000 ____D C:\Users\Janka\AppData\Local\Packages
2020-01-30 13:14 - 2019-03-01 17:59 - 000000000 ____D C:\Users\Janka\AppData\Local\CrashDumps
2020-01-26 17:32 - 2019-02-06 14:18 - 000002084 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000002082 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000002072 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-17 16:14 - 2018-12-31 15:41 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-17 16:14 - 2018-12-31 15:41 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories ========

2020-01-10 11:48 - 2020-01-10 11:48 - 000000153 _____ () C:\Users\ondre\AppData\Local\{01150414-5402-4C85-8619-1922B8314B75}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#2 Příspěvek od ondbou »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by ondre (16-02-2020 08:33:12)
Running from C:\Users\ondre\Desktop
Windows 10 Home Version 1903 18362.356 (X64) (2019-09-23 22:35:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-265624995-536550331-1996926755-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-265624995-536550331-1996926755-503 - Limited - Disabled)
Guest (S-1-5-21-265624995-536550331-1996926755-501 - Limited - Disabled)
Janka (S-1-5-21-265624995-536550331-1996926755-1002 - Limited - Enabled) => C:\Users\Janka
ondre (S-1-5-21-265624995-536550331-1996926755-1001 - Administrator - Enabled) => C:\Users\ondre
Ostatni (S-1-5-21-265624995-536550331-1996926755-1003 - Administrator - Enabled) => C:\Users\Ostatni
WDAGUtilityAccount (S-1-5-21-265624995-536550331-1996926755-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 3.3 - Google LLC)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 79.0.3060.80 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Backup and Sync from Google (HKLM\...\{825F60D9-2633-4D52-B2B0-5DA143433BBC}) (Version: 3.48.8668.1933 - Google, Inc.)
Balíček ovladačů pro úsporný režim (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28.05.2015) - Samsung Electronics Co., Ltd.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DiskCheckup v3.4 (HKLM-x32\...\DiskCheckup_is1) (Version: 3.4.1003 - PassMark Software)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
EaseUS Tools M 0.3.2 (HKLM-x32\...\D72C2F7D-B75E-4641-AFBE-199B95066617_is1) (Version: - EaseUS)
FastStone Image Viewer 6.7 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.7 - FastStone Soft)
FloorPlan 3D v8 (HKLM-x32\...\{93538CBE-F87E-4B79-872C-D0D098EB42EE}) (Version: 8.2 - IMSI)
FormatFactory 4.5.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.5.0.0 - Free Time)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
IDA-STEP (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\IDA-STEP) (Version: 4.0.18 - LKSoftWare GmbH)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Klasifikace 5.4 (HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\{BE7E6DAC-7EAA-4546-BBDD-43ADDF49EA14}_is1) (Version: - JPH Software)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11929.20606 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-265624995-536550331-1996926755-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-265624995-536550331-1996926755-1003\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Teams) (Version: 1.3.00.362 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.5.0 - Mozilla)
Mozilla Thunderbird 60.5.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.5.0 (x86 cs)) (Version: 60.5.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 2.02.53 (30.05.2018) - HP Printing Korea Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.01.00.04 - Samsung Electronics Co., Ltd.)
Samsung Network PC Fax (HKLM-x32\...\Samsung Network PC Fax) (Version: 2.02.28 (29.05.2018) - HP Printing Korea Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.12 - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.2.5 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.32 - Samsung Electronics Co., Ltd.) Hidden
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 3.31.81.01:10 - Samsung Electronics Co., Ltd.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd) Hidden
STP Viewer 2.3 (HKLM-x32\...\{CECCF8B1-F595-4845-9AA6-1EC57B9BECBA}_is1) (Version: - IdeaMK)
Stylish Driver Pack (HKLM-x32\...\Samsung Stylish UI Pack) (Version: 1.01.74.00 (09.02.2015) - Samsung Electronics Co., Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.362 - Microsoft Corporation)
TomTom MyDrive Connect 4.2.5.3754 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3754 - TomTom)
TOSHIBA eco Utility (HKLM-x32\...\InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.20.64 - TOSHIBA Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.12 - Samsung Electronics CO., LTD.)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 9.1.0 - Universal Media Server)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player 1.0.5 (HKLM-x32\...\VLC media player) (Version: 1.0.5 - VideoLAN Team)
WhatsApp (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\WhatsApp) (Version: 0.3.2043 - WhatsApp)
Zobrazit uživatelskou příručku (HKLM-x32\...\View User Guide) (Version: 4.0.0.6 - )

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220 [2020-01-27] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-09-24] (Fitbit)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-20] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-01-07] (Samsung Electronics Co. Ltd.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-265624995-536550331-1996926755-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ondre\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-265624995-536550331-1996926755-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\ondre\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [!NetFax0] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax1] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax2] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax3] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax4] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax5] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax6] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax7] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2018-11-29] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2018-11-29] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-10-15 11:01 - 2018-10-15 11:01 - 000013312 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libEGL.DLL
2018-10-15 11:01 - 2018-10-15 11:01 - 001950720 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libGLESv2.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000218112 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll
2018-05-30 05:58 - 2018-05-30 05:58 - 000675328 _____ () [File not signed] C:\Program Files (x86)\Samsung\Easy Document Creator\x64\EDCAddin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000114176 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 002183680 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000035328 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000065536 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tofloat32_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000029696 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tospdif_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000088576 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_bd_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000035328 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_directory_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000033280 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_fake_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000033280 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_file_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032256 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaes3_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000044032 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaout_directx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000045568 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libaraw_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 005726720 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libavcodec_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000047104 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libbandlimited_resampler_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000056832 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libblend_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000033792 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libcdg_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031744 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libconverter_fixed_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000043520 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libconverter_float_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000055296 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdirect3d_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031232 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdolby_surround_decoder_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031744 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdrawable_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000209920 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdshow_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000038400 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdts_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000178176 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstofloat32_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031744 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstospdif_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000228352 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libdvdnav_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000312832 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libfaad_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000036864 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libfake_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000268800 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libflac_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031232 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libfloat32_mixer_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 001736704 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libfreetype_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032768 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libglobalhotkeys_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032256 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libgrey_yuv_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000047104 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libhotkeys_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000073216 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_mmx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000051712 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000134656 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_sse2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031232 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_ymga_mmx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000030208 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_ymga_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000039424 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_mmx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000037376 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000047616 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_sse2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032256 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_i420_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000037376 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_mmx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000035840 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000046080 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_sse2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 001732608 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liblibass_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000150528 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liblibmpeg2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032768 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liblinear_resampler_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032256 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\liblpcm_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000032768 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libmemcpymmxext_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 001232384 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libmkv_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000036864 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpeg_audio_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000130560 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpgatofixed32_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000101888 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libplaylist_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000237568 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libpng_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 010196992 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libqt4_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000031232 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libscale_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000036352 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libscaletempo_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000743936 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libschroedinger_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000033792 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libsimple_channel_mixer_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 002104320 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libskins2_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000129536 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libspeex_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000033792 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_rar_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000030720 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_record_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000233984 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libswscale_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000359424 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libtheora_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000030208 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libugly_resampler_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000050688 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libvcd_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 001190912 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libvorbis_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000063488 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libvout_directx_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000046080 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libwaveout_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 001120256 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libxml_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000030720 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuvp_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000039936 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i420_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000035840 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i422_plugin.dll
2010-01-30 23:27 - 2010-01-30 23:27 - 000077312 _____ () [File not signed] C:\Program Files (x86)\VideoLAN\VLC\plugins\libzip_plugin.dll
2014-09-08 13:38 - 2014-09-08 13:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2020-02-16 07:43 - 2020-02-16 07:43 - 000114176 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_ctypes.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000173056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_elementtree.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 001808896 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_hashlib.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000032256 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_multiprocessing.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000046080 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_psutil_windows.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000047616 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_socket.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 002241024 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_ssl.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000026112 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\_yappi.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000080896 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\bz2.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000016384 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\common.time34.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000007680 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\hashobjs_ext.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000301568 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\PIL._imaging.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000169472 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\pyexpat.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 001084416 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\pysqlite2._sqlite.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000548864 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\pythoncom27.dll
2020-02-16 07:43 - 2020-02-16 07:43 - 000137728 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\pywintypes27.dll
2020-02-16 07:43 - 2020-02-16 07:43 - 000010752 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\select.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000020992 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\thumbnails_ext.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000689664 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\unicodedata.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000119808 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\usb_ext.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000128512 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32api.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000438784 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32com.shell.shell.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000011776 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32crypt.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000023040 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32event.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000149504 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32file.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000223232 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32gui.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000048128 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32inet.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000029696 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32pdh.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000027648 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32pipe.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000044032 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32process.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000020480 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32profile.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000136192 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32security.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000026624 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\win32ts.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000034816 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\windows.conditional.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000038400 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\windows.connectivity.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000071680 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\windows.device_monitor.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000109056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\windows.volumes.pyd
2020-02-16 07:43 - 2020-02-16 07:43 - 000020480 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\windows.winwrap.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 001325056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._controls_.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 001489408 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._core_.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 001007104 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._gdi_.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 000103424 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._html2.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 000916992 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._misc_.pyd
2020-02-16 07:44 - 2020-02-16 07:44 - 001039872 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wx._windows_.pyd
2020-01-02 18:18 - 2020-01-02 18:18 - 001743360 ____T (bookingDesktopApp.) [File not signed] C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\bookingDesktopApppdate.dll
2018-11-29 01:55 - 2018-11-29 01:55 - 000302080 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 000586240 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\System32\NetFaxPort64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 001050112 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxDataBase64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 001863680 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxEngine64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 000193024 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 000146944 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\PRTPROCS\x64\NetFaxProc64.dll
2020-02-14 10:52 - 2020-02-14 10:52 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2020-02-14 10:52 - 2020-02-14 10:52 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2020-02-14 11:38 - 2020-02-14 11:38 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AppVIsvSubsystems64.dll
2020-02-14 11:38 - 2020-02-14 11:38 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\c2r64.dll
2020-02-16 07:43 - 2020-02-16 07:43 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\python27.dll
2015-12-30 03:39 - 2015-12-30 03:39 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll
2018-10-15 11:11 - 2018-10-15 11:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll
2019-04-09 14:26 - 2019-04-09 14:26 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll
2018-10-15 11:09 - 2018-10-15 11:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll
2018-10-15 11:02 - 2018-10-15 11:02 - 000150016 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Xml.dll
2019-04-09 14:23 - 2019-04-09 14:23 - 000137216 _____ (TomTom) [File not signed] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxbase30u_net_vc90_x64.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxbase30u_vc90_x64.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxmsw30u_adv_vc90_x64.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxmsw30u_core_vc90_x64.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxmsw30u_html_vc90_x64.dll
2020-02-16 07:44 - 2020-02-16 07:44 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI158762\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\autochk.exe:BAK [11520]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-12-31 10:41 - 2019-01-04 12:27 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Android;C:\Windows\System32
HKU\S-1-5-21-265624995-536550331-1996926755-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ondre\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
HKU\S-1-5-21-265624995-536550331-1996926755-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-21-265624995-536550331-1996926755-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{31205EB2-6B6D-4823-B93C-4E1E3B4B3232}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{F58C84AF-D84C-4138-818F-892FA8CDF9AC}] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{EB5D10BA-B463-4B42-B746-AEA840E14833}] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{7EC73A43-CD38-4370-919D-30602B21A577}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{3B02F33B-6A32-420A-AA7F-6B4B3469666A}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{DA936714-B68C-4053-AC54-608DE189AA5B}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [TCP Query User{5B006D08-B951-4297-8D65-03211202CC57}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [UDP Query User{8F0C67AC-1B6F-42AD-AEF1-322EF0CEC72F}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [TCP Query User{18F09D80-5826-428E-8DB1-5E4537549D83}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [UDP Query User{C6F54BE4-E64B-4613-9B32-1D7BB390AF48}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [TCP Query User{1CE6C4C4-A710-4DA0-BA83-14D4E6A9CABB}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [UDP Query User{8EB72966-C647-4134-89A7-C2E6B849F4F9}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe
FirewallRules: [TCP Query User{C218BCD2-474E-4BD4-8B2C-D85B101D3445}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe
FirewallRules: [{2BAF2252-A399-4751-A84E-42D4E024DF5C}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{EC6B06D9-CF90-47ED-AD86-4F1C01444314}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FF6D72D2-F199-47BD-8655-6E8E4ABE7D82}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon64.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{517A5FA0-C5FF-4FA6-8C55-A9EF6F4F175E}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{2BED9D6A-05BA-4A31-B140-B50BA9FA33BD}] => (Allow) C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxMon64.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{AA059325-C42E-4C81-86E6-FADAD1C80AB6}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{DA26D0DE-D06F-4348-8510-41017C8E6C0A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{F4B34061-1049-4739-A36F-CE8625807540}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{62B4E6E7-42E6-460B-AEB6-5CF27F077F63}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{EAA56F2C-D402-4548-B4B0-F0315E642477}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{EC529A8F-AF5B-41E8-B678-5C680FE977AA}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3117EF26-427A-4A92-A534-FF46EFE06987}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{B341F846-1778-4A4E-8577-E14D4EED0C82}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{476A6FE2-8A69-41FB-8666-364858121C07}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe (HP Inc. -> )
FirewallRules: [{4EEF0F06-C64F-4C56-ABB4-9860557388AC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe (HP Inc. -> )
FirewallRules: [{A7B85B87-FE46-4FFC-978E-B5A5D5B1B213}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (HP Inc. -> )
FirewallRules: [{8E8D25EA-F707-4855-B5E9-E9B0EA8B252A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (HP Inc. -> )
FirewallRules: [TCP Query User{793F76AE-5656-4CD1-9678-D4581A9C0D1A}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{BC79552A-6EEA-41B1-BE53-4FAD9887223F}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F321761E-6DEA-42CC-94EF-1CBF31D2A100}] => (Allow) C:\Program Files (x86)\Universal Media Server\jre-x64\bin\javaw.exe
FirewallRules: [{951BABC1-B0E2-4CB4-AE3C-D45A38D39062}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A1E728C2-061C-4DAD-B26C-CFA7FE671292}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{A12E793C-31ED-43FF-A10B-F10E8AB618BE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{426D93A5-D071-4EF8-B8CF-CB24F7E12E4F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{04CA4715-1917-46B0-84B9-99D662A818C2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2ED11A01-A88E-4B9C-B73D-9AD2E892D336}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6D171736-BAD6-486E-A3B9-91D8A1CF31A8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44DB8FBF-8A2D-4A12-BFF3-B0BEE6496E40}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{49C1CB05-E76B-4526-92BA-45B802A54038}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{392070E2-2C21-4D82-8988-2B7922DB18E0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CA4F57D0-A822-4646-8520-3F74CB263D0E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CAEB7A6D-12AC-4E22-ACB0-306A454F9655}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ADA9A3D4-E7BD-4EED-95D8-EF45A4C20F1A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A07192DC-4CD7-42CA-A657-178DA0FB5619}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A851A47E-C7DF-4DE5-B7B6-8B6699BA6ED7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{274DB192-6303-4458-BD6C-B59067E9B70D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FA6BF20F-7831-4B86-B014-EE7786984DA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9DB0555E-28C3-495D-9266-59A5B3649F68}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

13-02-2020 18:26:19 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/16/2020 08:37:53 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Google Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/16/2020 08:25:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: usocoreworker.exe, verze: 10.0.18362.356, časové razítko: 0x3ff4cf43
Název chybujícího modulu: usocoreworker.exe, verze: 10.0.18362.356, časové razítko: 0x3ff4cf43
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000c443
ID chybujícího procesu: 0x3a64
Čas spuštění chybující aplikace: 0x01d5e49909c0a121
Cesta k chybující aplikaci: C:\Windows\System32\usocoreworker.exe
Cesta k chybujícímu modulu: C:\Windows\System32\usocoreworker.exe
ID zprávy: 05c518cb-e11d-4a86-a6bc-2f5ff4cb12e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/16/2020 08:19:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1664

Čas spuštění: 01d5e313d9ab4d90

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe

ID hlášení: 6cbbd2c4-29a0-482c-97c8-142951bddf7e

Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.18362.329_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Cross-thread

Error: (02/16/2020 08:12:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program YourPhone.exe verze 1.19123.13.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1ebc

Čas spuštění: 01d5e313f24bad1d

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhone.exe

ID hlášení: 5c1cd56c-5cdd-401d-8492-a0d427949c1d

Úplný název balíčku s chybou: Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (02/16/2020 07:54:08 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (02/16/2020 07:54:05 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 32088; požadovaná velikost: 52360.

Error: (02/16/2020 07:49:10 AM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.

Error: (02/16/2020 07:47:14 AM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.


System errors:
=============
Error: (02/16/2020 08:32:02 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 10krát.

Error: (02/16/2020 07:43:32 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-BG5JJNF)
Description: Nelze spustit server DCOM: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147958016
při provádění příkazu:
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (02/16/2020 07:43:20 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-BG5JJNF)
Description: Nelze spustit server DCOM: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXynb3eakad12451rv00qxextfnce9sxb8.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147958016
při provádění příkazu:
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (02/14/2020 08:40:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 9krát.

Error: (02/14/2020 07:05:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 8krát.

Error: (02/14/2020 04:49:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (02/14/2020 03:29:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 6krát.

Error: (02/14/2020 02:18:43 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Windows Defender:
===================================
Date: 2020-02-13 12:38:06.703
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2684.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-02-13 12:22:30.711
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2684.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-02-16 08:31:59.023
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:31:59.011
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:31:54.678
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:31:54.665
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:30:31.164
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:30:31.153
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:30:25.926
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 08:30:25.914
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: TOSHIBA 2.20 09/14/11
Motherboard: TOSHIBA NWQAA
Processor: Intel(R) Core(TM) i7 CPU Q 740 @ 1.73GHz
Percentage of memory in use: 87%
Total physical RAM: 4026.67 MB
Available physical RAM: 522.51 MB
Total Virtual: 6842.67 MB
Available Virtual: 1556.81 MB

==================== Drives ================================

Drive c: (TI30648900A) (Fixed) (Total:454.11 GB) (Free:222.45 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{f3c09d85-0000-0000-0000-100000000000}\ (System) (Fixed) (Total:1.46 GB) (Free:0.87 GB) NTFS
\\?\Volume{f3c09d85-0000-0000-0000-c0e471000000}\ () (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F3C09D85)
Partition 1: (Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=454.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=504 MB) - (Type=27)
Partition 4: (Not Active) - (Size=9.7 GB) - (Type=17)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#4 Příspěvek od ondbou »

Taky zdravím a děkuji za kontrolu.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-16-2020
# Duration: 00:00:40
# OS: Windows 10 Home
# Cleaned: 3
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.lnk
Deleted C:\Users\Public\Desktop\Booking.lnk

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\csastats

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3610 octets] - [28/06/2019 12:45:11]
AdwCleaner[C00].txt - [3304 octets] - [28/06/2019 12:46:16]
AdwCleaner[S01].txt - [2074 octets] - [16/02/2020 13:01:56]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#5 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#6 Příspěvek od ondbou »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by ondre (administrator) on DESKTOP-BG5JJNF (TOSHIBA Satellite A660) (16-02-2020 15:18:18)
Running from C:\Users\ondre\Desktop
Loaded Profiles: ondre (Available Profiles: ondre & Janka & Ostatni)
Platform: Windows 10 Home Version 1903 18362.356 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(HP Printing Korea Co., Ltd.) [File not signed] C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(HP Printing Korea Co., Ltd.) [File not signed] C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ondre\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotification.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1519016 2010-07-28] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [97509120 2020-01-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [AvastBrowserAutoLaunch_0CE231CE0ED3750FB84C2E31233425D0] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47552040 2019-12-22] (Google LLC -> )
HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2146536 2019-04-09] (TomTom International BV -> TomTom)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\79.0.3060.80\Installer\chrmstp.exe [2020-02-13] (AVAST Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume2autocheck autochk /p \??\C:autocheck autochk *
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1FC6EE4A-7E7F-425D-B771-6057E4CE9417} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27366472 2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {283D59D4-C616-4D36-BED5-32F405A99285} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {2B223DFB-966D-44BD-A441-149F1495D803} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {2CF24D9D-6FFC-46FB-BF1F-0A043CD33033} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {34FA4FC1-F4CA-4AE8-BA44-A8AEBD02B183} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {42B5AF8D-E159-473C-AFF5-69022B776410} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27366472 2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {5098F203-E287-4F8C-AAB9-B213E6D07605} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2167704 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C70E92D-CBF6-47A1-AFA4-DE035FE688AA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2167704 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F8C75FA-096A-411C-B6B3-177F30C42673} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2349960 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6CDF9DD5-1174-43EB-B926-DFF12745EAF5} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [1333472 2016-01-28] (Samsung Electronics CO., LTD. -> )
Task: {7116DD0A-78FA-403A-991B-16D6E244EF39} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {95919C76-C864-4D66-9D91-396C8E36898F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {96B9EC73-A0E8-4615-97D1-E401BCEF587F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA130AD9-02D2-44EC-B696-6DECF1E61B6A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AEA9AC64-AD7A-40D3-B287-2F827DB39C3C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1858536 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {B13E92A9-1472-410E-802C-7EFF11581334} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {C014CE2E-D590-4DCD-A149-572A5122BFB7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D00BB801-251C-4A09-BCA1-9AE64E56EC4C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {EAACCFAA-B853-4E12-B871-7CFC032F6521} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1001" /ENABLE
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1002" /ENABLE
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1003" /ENABLE
Task: {F88933A6-ED7B-49A8-A492-47795ADCF192} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{19c5cd92-1ab0-47af-bacf-3409add47b07}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{32d9ef43-4b60-4379-8728-c3febed71be2}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2019-02-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default [2020-02-16]
CHR Notifications: Default -> hxxps://en.softonic.com; hxxps://peetube.cc; hxxps://www.tipsport.cz; hxxps://www.tomtom.com
CHR DefaultSearchURL: Default -> hxxps://search.seznam.cz/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> seznam.cz
CHR DefaultSuggestURL: Default -> hxxps://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Extension: (Prezentace) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-31]
CHR Extension: (No-Script Suite Lite) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahnanjpbkghcdgmlchbcfoiefnifjeni [2019-07-16]
CHR Extension: (Dokumenty) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-31]
CHR Extension: (Disk Google) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-31]
CHR Extension: (YouTube) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-31]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-31]
CHR Extension: (Tabulky) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-02-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-15]
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-21]
CHR Profile: C:\Users\ondre\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-21]
CHR HKU\S-1-5-21-265624995-536550331-1996926755-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-12-31] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\79.0.3060.80\elevation_service.exe [968552 2020-01-08] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11597176 2020-02-05] (Microsoft Corporation -> Microsoft Corporation)
R2 Samsung Network Fax Server; C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-01-07] (Samsung Electronics CO., LTD. -> )
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [711168 2013-07-31] (Microsoft Windows Hardware Compatibility Publisher -> DiBcom)
R3 enecir; C:\WINDOWS\system32\DRIVERS\enecir.sys [71168 2013-11-03] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 enecirhid; C:\WINDOWS\system32\DRIVERS\enecirhid.sys [24064 2013-11-03] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [44952 2017-04-27] (Toshiba Client Solutions Co.,Ltd. -> Toshiba Client Solutions Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-16 13:30 - 2020-02-16 13:30 - 008356016 _____ (Malwarebytes) C:\Users\ondre\Downloads\AdwCleaner (1).exe
2020-02-16 12:59 - 2020-02-16 12:59 - 008356016 _____ (Malwarebytes) C:\Users\ondre\Desktop\AdwCleaner (1).exe
2020-02-16 08:33 - 2020-02-16 14:49 - 000014085 _____ C:\Users\ondre\Desktop\Addition.txt
2020-02-16 08:20 - 2020-02-16 15:22 - 000025007 _____ C:\Users\ondre\Desktop\FRST.txt
2020-02-16 08:01 - 2020-02-16 08:01 - 000000000 ____D C:\Users\ondre\AppData\Roaming\Microsoft Teams
2020-02-16 08:00 - 2020-02-16 08:00 - 002279424 _____ (Farbar) C:\Users\ondre\Downloads\FRST64 (2).exe
2020-02-16 08:00 - 2020-02-16 08:00 - 002279424 _____ (Farbar) C:\Users\ondre\Desktop\FRST64 (1).exe
2020-02-14 15:12 - 2020-02-14 15:12 - 000000000 ____D C:\Users\Ostatni\AppData\Local\Microsoft Help
2020-02-14 14:55 - 2020-02-14 14:55 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2020-02-14 14:26 - 2020-02-14 14:26 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-02-14 14:26 - 2020-02-14 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2020-02-14 10:52 - 2020-02-14 10:52 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-02-14 10:46 - 2020-02-14 10:48 - 005509624 _____ (Microsoft Corporation) C:\Users\Ostatni\Downloads\Setup.Def.cs-cz_O365ProPlusRetail_0d1242d3-080d-4a41-9ea3-ab07e22b22d9_TX_DB_Platform_def_b_64_.exe
2020-02-14 10:45 - 2020-02-14 10:45 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2020-02-13 12:55 - 2020-02-13 12:55 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-02-12 07:36 - 2020-01-16 06:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-02-12 07:36 - 2020-01-16 05:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-02-03 15:04 - 2020-02-14 15:16 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-02-03 14:11 - 2020-02-03 14:11 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2020-02-03 14:11 - 2020-02-03 14:11 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2020-02-03 13:10 - 2020-02-03 13:10 - 000013634 _____ C:\Users\Janka\Downloads\Evidence pracovní doby 2020 - pedagogové.xlsx
2020-02-03 12:22 - 2020-02-03 12:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-02-03 11:54 - 2020-02-14 15:16 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-03 11:54 - 2020-02-03 11:54 - 000000000 ____D C:\Users\ondre\AppData\Local\Microsoft Help
2020-02-03 11:36 - 2020-02-03 11:50 - 633319536 _____ (Microsoft Corporation) C:\Users\ondre\Downloads\microsoft-office-2010_MSOffice201064bit (1).exe
2020-02-03 10:55 - 2020-02-03 11:05 - 633319536 _____ (Microsoft Corporation) C:\Users\ondre\Downloads\microsoft-office-2010_MSOffice201064bit.exe
2020-01-31 16:41 - 2020-01-31 16:42 - 035299688 _____ (Microsoft Corporation) C:\Users\Janka\Downloads\OneDriveSetup.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-16 15:21 - 2019-03-11 11:24 - 000000000 ____D C:\Users\ondre\AppData\Local\CrashDumps
2020-02-16 15:20 - 2019-06-28 10:14 - 000000000 ____D C:\FRST
2020-02-16 15:13 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-16 15:12 - 2019-09-23 22:42 - 000000000 ____D C:\Users\ondre
2020-02-16 15:09 - 2019-10-08 06:30 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-16 15:09 - 2019-10-08 06:30 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-16 15:09 - 2019-09-23 23:34 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1003
2020-02-16 15:09 - 2019-09-23 23:34 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1002
2020-02-16 15:09 - 2019-09-23 23:34 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-265624995-536550331-1996926755-1001
2020-02-16 15:08 - 2019-09-23 23:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-16 15:08 - 2018-12-31 16:10 - 000073232 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll
2020-02-16 15:08 - 2018-12-31 15:04 - 000017920 _____ C:\WINDOWS\system32\rpcnetp.exe
2020-02-16 15:07 - 2019-09-23 22:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-16 14:53 - 2019-09-23 23:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-02-16 14:46 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-16 14:11 - 2020-01-02 18:18 - 000000000 ____D C:\Program Files (x86)\bookingDesktopApp
2020-02-16 14:11 - 2020-01-02 18:14 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2020-02-16 13:39 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-02-16 13:38 - 2019-09-23 22:30 - 000484832 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-02-16 13:38 - 2018-12-31 15:06 - 000017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.dll
2020-02-16 13:37 - 2018-12-31 15:04 - 000017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.exe
2020-02-16 13:35 - 2019-09-23 22:42 - 000000000 ____D C:\Users\Janka
2020-02-16 13:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-16 10:31 - 2019-07-25 07:27 - 000000000 ____D C:\Users\ondre\AppData\Roaming\vlc
2020-02-16 08:02 - 2019-02-09 15:54 - 000000000 ____D C:\Users\ondre\AppData\Local\SquirrelTemp
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:56 - 2018-12-31 15:41 - 000000000 ___RD C:\Users\ondre\OneDrive
2020-02-16 07:40 - 2019-12-03 09:00 - 000000000 ___HD C:\OneDriveTemp
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-16 07:40 - 2018-12-31 16:31 - 000000000 ___RD C:\Users\Janka\OneDrive
2020-02-14 17:00 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-14 15:16 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-02-14 15:12 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-02-14 10:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-02-13 17:20 - 2019-09-23 23:34 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-02-13 17:20 - 2019-09-23 23:34 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-02-13 17:20 - 2018-12-31 16:08 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-02-13 17:20 - 2018-12-31 16:08 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-02-13 17:09 - 2019-02-02 16:51 - 000000000 ____D C:\Install
2020-02-13 12:09 - 2019-01-02 14:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-02-13 12:08 - 2019-01-02 14:47 - 120407888 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-02-12 07:09 - 2019-09-23 23:34 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-02-10 19:55 - 2019-09-23 22:42 - 000000000 ____D C:\Users\Ostatni
2020-02-07 15:17 - 2019-09-08 11:55 - 000000000 ____D C:\Users\ondre\AppData\Local\ElevatedDiagnostics
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-05 07:19 - 2019-01-07 19:47 - 000000000 ___RD C:\Users\Ostatni\OneDrive
2020-02-03 21:56 - 2019-03-19 05:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-02-03 21:56 - 2019-03-19 05:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-03 19:57 - 2019-01-14 16:31 - 000000000 ____D C:\Users\Ostatni\AppData\Local\CrashDumps
2020-02-03 15:42 - 2018-12-31 10:41 - 000000167 _____ C:\WINDOWS\win.ini
2020-02-03 14:27 - 2019-04-30 09:00 - 000000000 ____D C:\Janka
2020-01-31 16:54 - 2018-12-31 16:14 - 000000000 ____D C:\Users\Janka\AppData\Local\ConnectedDevicesPlatform
2020-01-31 16:50 - 2019-01-19 13:02 - 000000000 ____D C:\Users\Janka\AppData\Local\PlaceholderTileLogoFolder
2020-01-31 16:50 - 2018-12-31 16:15 - 000000000 ____D C:\Users\Janka\AppData\Local\Packages
2020-01-30 13:14 - 2019-03-01 17:59 - 000000000 ____D C:\Users\Janka\AppData\Local\CrashDumps
2020-01-26 17:32 - 2019-02-06 14:18 - 000002084 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000002082 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000002072 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-01-26 17:32 - 2019-02-06 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-18 13:31 - 2019-02-06 14:26 - 000000000 ___RD C:\Users\ondre\Disk Google
2020-01-17 16:14 - 2018-12-31 15:41 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-17 16:14 - 2018-12-31 15:41 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories ========

2020-01-10 11:48 - 2020-01-10 11:48 - 000000153 _____ () C:\Users\ondre\AppData\Local\{01150414-5402-4C85-8619-1922B8314B75}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#7 Příspěvek od ondbou »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by ondre (16-02-2020 15:25:27)
Running from C:\Users\ondre\Desktop
Windows 10 Home Version 1903 18362.356 (X64) (2019-09-23 22:35:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-265624995-536550331-1996926755-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-265624995-536550331-1996926755-503 - Limited - Disabled)
Guest (S-1-5-21-265624995-536550331-1996926755-501 - Limited - Disabled)
Janka (S-1-5-21-265624995-536550331-1996926755-1002 - Limited - Enabled) => C:\Users\Janka
ondre (S-1-5-21-265624995-536550331-1996926755-1001 - Administrator - Enabled) => C:\Users\ondre
Ostatni (S-1-5-21-265624995-536550331-1996926755-1003 - Administrator - Enabled) => C:\Users\Ostatni
WDAGUtilityAccount (S-1-5-21-265624995-536550331-1996926755-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 3.3 - Google LLC)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 79.0.3060.80 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Backup and Sync from Google (HKLM\...\{825F60D9-2633-4D52-B2B0-5DA143433BBC}) (Version: 3.48.8668.1933 - Google, Inc.)
Balíček ovladačů pro úsporný režim (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28.05.2015) - Samsung Electronics Co., Ltd.)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DiskCheckup v3.4 (HKLM-x32\...\DiskCheckup_is1) (Version: 3.4.1003 - PassMark Software)
FastStone Image Viewer 6.7 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.7 - FastStone Soft)
FloorPlan 3D v8 (HKLM-x32\...\{93538CBE-F87E-4B79-872C-D0D098EB42EE}) (Version: 8.2 - IMSI)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
IDA-STEP (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\IDA-STEP) (Version: 4.0.18 - LKSoftWare GmbH)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11929.20606 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\Teams) (Version: 1.3.00.362 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.5.0 - Mozilla)
Mozilla Thunderbird 60.5.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.5.0 (x86 cs)) (Version: 60.5.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 2.02.53 (30.05.2018) - HP Printing Korea Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.01.00.04 - Samsung Electronics Co., Ltd.)
Samsung Network PC Fax (HKLM-x32\...\Samsung Network PC Fax) (Version: 2.02.28 (29.05.2018) - HP Printing Korea Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.12 - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.2.5 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.32 - Samsung Electronics Co., Ltd.) Hidden
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 3.31.81.01:10 - Samsung Electronics Co., Ltd.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd) Hidden
STP Viewer 2.3 (HKLM-x32\...\{CECCF8B1-F595-4845-9AA6-1EC57B9BECBA}_is1) (Version: - IdeaMK)
Stylish Driver Pack (HKLM-x32\...\Samsung Stylish UI Pack) (Version: 1.01.74.00 (09.02.2015) - Samsung Electronics Co., Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.362 - Microsoft Corporation)
TomTom MyDrive Connect 4.2.5.3754 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3754 - TomTom)
TOSHIBA eco Utility (HKLM-x32\...\InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.20.64 - TOSHIBA Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.12 - Samsung Electronics CO., LTD.)
Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 9.1.0 - Universal Media Server)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player 1.0.5 (HKLM-x32\...\VLC media player) (Version: 1.0.5 - VideoLAN Team)
WhatsApp (HKU\S-1-5-21-265624995-536550331-1996926755-1001\...\WhatsApp) (Version: 0.3.2043 - WhatsApp)
Zobrazit uživatelskou příručku (HKLM-x32\...\View User Guide) (Version: 4.0.0.6 - )

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220 [2020-01-27] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-09-24] (Fitbit)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-20] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-01-07] (Samsung Electronics Co. Ltd.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-265624995-536550331-1996926755-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ondre\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-265624995-536550331-1996926755-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\ondre\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [!NetFax0] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax1] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax2] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax3] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax4] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax5] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax6] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [!NetFax7] -> {35308360-D4A6-436D-B701-1FEC7E96BA48} => C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll [2018-05-29] (HP Printing Korea Co., Ltd.) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-10-15 11:01 - 2018-10-15 11:01 - 000013312 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libEGL.DLL
2018-10-15 11:01 - 2018-10-15 11:01 - 001950720 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libGLESv2.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000218112 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll
2020-01-27 16:19 - 2020-01-27 16:22 - 000159744 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220\DAXRPCClient.dll
2020-01-27 16:19 - 2020-01-27 16:23 - 037985792 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220\DolbyAccess.dll
2018-12-31 17:10 - 2018-12-31 17:12 - 000948736 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220\e_sqlite3.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000114176 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_ctypes.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000173056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_elementtree.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001808896 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_hashlib.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000032256 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_multiprocessing.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000046080 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_psutil_windows.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000047616 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_socket.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 002241024 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_ssl.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000026112 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\_yappi.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000080896 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\bz2.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000016384 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\common.time34.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000007680 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\hashobjs_ext.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000301568 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\PIL._imaging.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000169472 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\pyexpat.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001084416 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\pysqlite2._sqlite.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000548864 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\pythoncom27.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000137728 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\pywintypes27.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000010752 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\select.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000020992 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\thumbnails_ext.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000689664 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\unicodedata.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000119808 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\usb_ext.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000128512 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32api.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000438784 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32com.shell.shell.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000011776 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32crypt.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000023040 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32event.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000149504 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32file.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000223232 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32gui.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000048128 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32inet.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000029696 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32pdh.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000027648 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32pipe.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000044032 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32process.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000020480 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32profile.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000136192 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32security.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000026624 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\win32ts.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000034816 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\windows.conditional.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000038400 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\windows.connectivity.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000071680 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\windows.device_monitor.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000109056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\windows.volumes.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000020480 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\windows.winwrap.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001325056 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._controls_.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001489408 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._core_.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001007104 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._gdi_.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000103424 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._html2.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 000916992 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._misc_.pyd
2020-02-16 15:13 - 2020-02-16 15:13 - 001039872 _____ () [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wx._windows_.pyd
2019-01-07 08:52 - 2018-05-29 19:29 - 000586240 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\System32\NetFaxPort64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 001050112 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxDataBase64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 001863680 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxEngine64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 000193024 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxShell64.dll
2019-01-07 08:52 - 2018-05-29 19:29 - 000146944 _____ (HP Printing Korea Co., Ltd.) [File not signed] C:\WINDOWS\system32\spool\PRTPROCS\x64\NetFaxProc64.dll
2020-02-14 11:38 - 2020-02-14 11:38 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\AppVIsvSubsystems64.dll
2020-02-14 11:38 - 2020-02-14 11:38 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\c2r64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\python27.dll
2015-12-30 03:39 - 2015-12-30 03:39 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll
2018-10-15 11:11 - 2018-10-15 11:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll
2019-04-09 14:26 - 2019-04-09 14:26 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll
2018-10-15 11:09 - 2018-10-15 11:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll
2018-10-15 11:02 - 2018-10-15 11:02 - 000150016 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Xml.dll
2019-04-09 14:23 - 2019-04-09 14:23 - 000137216 _____ (TomTom) [File not signed] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxbase30u_net_vc90_x64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxbase30u_vc90_x64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxmsw30u_adv_vc90_x64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxmsw30u_core_vc90_x64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxmsw30u_html_vc90_x64.dll
2020-02-16 15:13 - 2020-02-16 15:13 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ondre\AppData\Local\Temp\_MEI28882\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-12-31 10:41 - 2019-01-04 12:27 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Android;C:\Windows\System32
HKU\S-1-5-21-265624995-536550331-1996926755-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ondre\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{31205EB2-6B6D-4823-B93C-4E1E3B4B3232}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{F58C84AF-D84C-4138-818F-892FA8CDF9AC}] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{EB5D10BA-B463-4B42-B746-AEA840E14833}] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{7EC73A43-CD38-4370-919D-30602B21A577}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{3B02F33B-6A32-420A-AA7F-6B4B3469666A}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{DA936714-B68C-4053-AC54-608DE189AA5B}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [TCP Query User{5B006D08-B951-4297-8D65-03211202CC57}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [UDP Query User{8F0C67AC-1B6F-42AD-AEF1-322EF0CEC72F}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [TCP Query User{18F09D80-5826-428E-8DB1-5E4537549D83}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [UDP Query User{C6F54BE4-E64B-4613-9B32-1D7BB390AF48}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [TCP Query User{1CE6C4C4-A710-4DA0-BA83-14D4E6A9CABB}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [UDP Query User{8EB72966-C647-4134-89A7-C2E6B849F4F9}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe
FirewallRules: [TCP Query User{C218BCD2-474E-4BD4-8B2C-D85B101D3445}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe
FirewallRules: [{2BAF2252-A399-4751-A84E-42D4E024DF5C}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{EC6B06D9-CF90-47ED-AD86-4F1C01444314}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FF6D72D2-F199-47BD-8655-6E8E4ABE7D82}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon64.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{517A5FA0-C5FF-4FA6-8C55-A9EF6F4F175E}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{2BED9D6A-05BA-4A31-B140-B50BA9FA33BD}] => (Allow) C:\WINDOWS\system32\spool\drivers\x64\3\NetFaxMon64.exe (HP Printing Korea Co., Ltd.) [File not signed]
FirewallRules: [{AA059325-C42E-4C81-86E6-FADAD1C80AB6}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{DA26D0DE-D06F-4348-8510-41017C8E6C0A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{F4B34061-1049-4739-A36F-CE8625807540}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{62B4E6E7-42E6-460B-AEB6-5CF27F077F63}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{EAA56F2C-D402-4548-B4B0-F0315E642477}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{EC529A8F-AF5B-41E8-B678-5C680FE977AA}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3117EF26-427A-4A92-A534-FF46EFE06987}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{B341F846-1778-4A4E-8577-E14D4EED0C82}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{476A6FE2-8A69-41FB-8666-364858121C07}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe (HP Inc. -> )
FirewallRules: [{4EEF0F06-C64F-4C56-ABB4-9860557388AC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe (HP Inc. -> )
FirewallRules: [{A7B85B87-FE46-4FFC-978E-B5A5D5B1B213}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (HP Inc. -> )
FirewallRules: [{8E8D25EA-F707-4855-B5E9-E9B0EA8B252A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (HP Inc. -> )
FirewallRules: [TCP Query User{793F76AE-5656-4CD1-9678-D4581A9C0D1A}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{BC79552A-6EEA-41B1-BE53-4FAD9887223F}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F321761E-6DEA-42CC-94EF-1CBF31D2A100}] => (Allow) C:\Program Files (x86)\Universal Media Server\jre-x64\bin\javaw.exe
FirewallRules: [{951BABC1-B0E2-4CB4-AE3C-D45A38D39062}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FirewallRules: [{A1E728C2-061C-4DAD-B26C-CFA7FE671292}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{A12E793C-31ED-43FF-A10B-F10E8AB618BE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{426D93A5-D071-4EF8-B8CF-CB24F7E12E4F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FirewallRules: [{04CA4715-1917-46B0-84B9-99D662A818C2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2ED11A01-A88E-4B9C-B73D-9AD2E892D336}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6D171736-BAD6-486E-A3B9-91D8A1CF31A8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44DB8FBF-8A2D-4A12-BFF3-B0BEE6496E40}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{49C1CB05-E76B-4526-92BA-45B802A54038}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{392070E2-2C21-4D82-8988-2B7922DB18E0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CA4F57D0-A822-4646-8520-3F74CB263D0E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CAEB7A6D-12AC-4E22-ACB0-306A454F9655}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ADA9A3D4-E7BD-4EED-95D8-EF45A4C20F1A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A07192DC-4CD7-42CA-A657-178DA0FB5619}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A851A47E-C7DF-4DE5-B7B6-8B6699BA6ED7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{274DB192-6303-4458-BD6C-B59067E9B70D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FA6BF20F-7831-4B86-B014-EE7786984DA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9DB0555E-28C3-495D-9266-59A5B3649F68}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/16/2020 03:33:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program HxOutlook.exe verze 16.0.12430.20132 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1598

Čas spuštění: 01d5e4d5dd7a6090

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxOutlook.exe

ID hlášení: f55c4fc5-c8f6-4666-b07e-1022aef78f36

Úplný název balíčku s chybou: microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: microsoft.windowslive.mail

Typ zablokování: Cross-thread

Error: (02/16/2020 03:32:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1, časové razítko: 0x42f071ca
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d5cc8
ID chybujícího procesu: 0xf84
Čas spuštění chybující aplikace: 0x01d5e4d5d4cf9d4a
Cesta k chybující aplikaci: C:\WINDOWS\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 8bf7ddd2-0ba6-47ba-bad1-5bfb44600cda
Úplný název chybujícího balíčku: Microsoft.MicrosoftOfficeHub_18.2001.1241.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: Microsoft.MicrosoftOfficeHub

Error: (02/16/2020 03:32:16 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3308,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/16/2020 03:29:41 PM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.

Error: (02/16/2020 03:28:25 PM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.

Error: (02/16/2020 03:20:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1, časové razítko: 0x42f071ca
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d5cc8
ID chybujícího procesu: 0x1874
Čas spuštění chybující aplikace: 0x01d5e4d3cf9d1b7f
Cesta k chybující aplikaci: C:\WINDOWS\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: f94ae165-b11e-4bf3-8543-71bf3de083f3
Úplný název chybujícího balíčku: Microsoft.MicrosoftOfficeHub_18.2001.1241.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: Microsoft.MicrosoftOfficeHub

Error: (02/16/2020 03:20:13 PM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.

Error: (02/16/2020 03:14:10 PM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 28) (User: DESKTOP-BG5JJNF)
Description: Sledování změn uživatelských seznamů slov se nezdařilo: -2147023504. Kontrola pravopisu zůstane dostupná, ale nebudou ohlášeny žádné změny.


System errors:
=============
Error: (02/16/2020 03:15:32 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0xe0000003): 2020-02 Kumulativní aktualizace pro Windows 10 Version 1903 pro systémy typu x64 (KB4532693).

Error: (02/16/2020 03:11:29 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku C: bylo zjištěno poškození.

Bylo nalezeno poškození ve struktuře indexů systému souborů. Referenční číslo souboru je 0xb000000080f39. Název souboru je \Users\ondre\AppData\Roaming\Microsoft. Poškozený atribut indexu je :$I30:$INDEX_ALLOCATION.

Error: (02/16/2020 03:07:15 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: C:\Device\HarddiskVolume23

Error: (02/16/2020 03:08:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (14:20:51, ‎16.‎02.‎2020) bylo neočekávané.

Error: (02/16/2020 02:40:45 PM) (Source: DCOM) (EventID: 10029) (User: DESKTOP-BG5JJNF)
Description: U aktivace identifikátoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vypršel časový limit během čekání na zastavení služby wuauserv.

Error: (02/16/2020 01:51:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba bookingDesktopApp Update Service (bookingdesktopapp) byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (02/16/2020 01:44:27 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0xe0000003): 2020-02 Kumulativní aktualizace pro Windows 10 Version 1903 pro systémy typu x64 (KB4532693).

Error: (02/16/2020 01:44:27 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0xe0000003): Aktualizace zabezpečení systému Windows 10 Version 1903 pro systémy na platformě x64 (KB4524244).


Windows Defender:
===================================
Date: 2020-02-13 12:38:06.703
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2684.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-02-13 12:22:30.711
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2684.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-02-16 15:34:26.519
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:34:26.509
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:31:04.255
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:31:04.241
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:31:03.076
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:31:03.061
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:30:30.302
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-16 15:30:30.300
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: TOSHIBA 2.20 09/14/11
Motherboard: TOSHIBA NWQAA
Processor: Intel(R) Core(TM) i7 CPU Q 740 @ 1.73GHz
Percentage of memory in use: 79%
Total physical RAM: 4026.67 MB
Available physical RAM: 809.31 MB
Total Virtual: 6714.67 MB
Available Virtual: 3322.83 MB

==================== Drives ================================

Drive c: (TI30648900A) (Fixed) (Total:454.11 GB) (Free:226.4 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{f3c09d85-0000-0000-0000-100000000000}\ (System) (Fixed) (Total:1.46 GB) (Free:0.87 GB) NTFS
\\?\Volume{f3c09d85-0000-0000-0000-c0e471000000}\ () (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F3C09D85)
Partition 1: (Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=454.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=504 MB) - (Type=27)
Partition 4: (Not Active) - (Size=9.7 GB) - (Type=17)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#8 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
C:\Users\ondre\AppData\Local\Temp
FirewallRules: [UDP Query User{DA936714-B68C-4053-AC54-608DE189AA5B}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [TCP Query User{5B006D08-B951-4297-8D65-03211202CC57}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [UDP Query User{8F0C67AC-1B6F-42AD-AEF1-322EF0CEC72F}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [TCP Query User{18F09D80-5826-428E-8DB1-5E4537549D83}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [UDP Query User{C6F54BE4-E64B-4613-9B32-1D7BB390AF48}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [TCP Query User{1CE6C4C4-A710-4DA0-BA83-14D4E6A9CABB}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [{951BABC1-B0E2-4CB4-AE3C-D45A38D39062}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FirewallRules: [{A1E728C2-061C-4DAD-B26C-CFA7FE671292}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{A12E793C-31ED-43FF-A10B-F10E8AB618BE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{426D93A5-D071-4EF8-B8CF-CB24F7E12E4F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {283D59D4-C616-4D36-BED5-32F405A99285} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {B13E92A9-1472-410E-802C-7EFF11581334} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
C:\Users\ondre\AppData\Local\{01150414-5402-4C85-8619-1922B8314B75}

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#9 Příspěvek od ondbou »

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by ondre (16-02-2020 16:05:28) Run:2
Running from C:\Users\ondre\Desktop
Loaded Profiles: ondre (Available Profiles: ondre & Janka & Ostatni)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\Users\ondre\AppData\Local\Temp
FirewallRules: [UDP Query User{DA936714-B68C-4053-AC54-608DE189AA5B}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [TCP Query User{5B006D08-B951-4297-8D65-03211202CC57}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe No File
FirewallRules: [UDP Query User{8F0C67AC-1B6F-42AD-AEF1-322EF0CEC72F}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [TCP Query User{18F09D80-5826-428E-8DB1-5E4537549D83}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe No File
FirewallRules: [UDP Query User{C6F54BE4-E64B-4613-9B32-1D7BB390AF48}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [TCP Query User{1CE6C4C4-A710-4DA0-BA83-14D4E6A9CABB}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [{951BABC1-B0E2-4CB4-AE3C-D45A38D39062}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FirewallRules: [{A1E728C2-061C-4DAD-B26C-CFA7FE671292}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{A12E793C-31ED-43FF-A10B-F10E8AB618BE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe No File
FirewallRules: [{426D93A5-D071-4EF8-B8CF-CB24F7E12E4F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe No File
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {283D59D4-C616-4D36-BED5-32F405A99285} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
Task: {B13E92A9-1472-410E-802C-7EFF11581334} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-31] (Google Inc -> Google Inc.)
C:\Users\ondre\AppData\Local\{01150414-5402-4C85-8619-1922B8314B75}

EmptyTemp:
End
*****************

Processes closed successfully.

"C:\Users\ondre\AppData\Local\Temp" folder move:

Could not move "C:\Users\ondre\AppData\Local\Temp" => Scheduled to move on reboot.

"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA936714-B68C-4053-AC54-608DE189AA5B}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5B006D08-B951-4297-8D65-03211202CC57}C:\program files (x86)\common files\oracle\java\javapath_target_819937\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8F0C67AC-1B6F-42AD-AEF1-322EF0CEC72F}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{18F09D80-5826-428E-8DB1-5E4537549D83}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C6F54BE4-E64B-4613-9B32-1D7BB390AF48}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1CE6C4C4-A710-4DA0-BA83-14D4E6A9CABB}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{951BABC1-B0E2-4CB4-AE3C-D45A38D39062}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A1E728C2-061C-4DAD-B26C-CFA7FE671292}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A12E793C-31ED-43FF-A10B-F10E8AB618BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{426D93A5-D071-4EF8-B8CF-CB24F7E12E4F}" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{283D59D4-C616-4D36-BED5-32F405A99285}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{283D59D4-C616-4D36-BED5-32F405A99285}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B13E92A9-1472-410E-802C-7EFF11581334}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B13E92A9-1472-410E-802C-7EFF11581334}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\ondre\AppData\Local\{01150414-5402-4C85-8619-1922B8314B75} => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 12607488 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33795355 B
Java, Flash, Steam htmlcache => 1065 B
Windows/system/drivers => 50427642 B
Edge => 1306734 B
Chrome => 199285911 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 492480 B
NetworkService => 155718578 B
ondre => 472733815 B
Janka => 547223118 B
Ostatni => 637092892 B

RecycleBin => 0 B
EmptyTemp: => 2 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 16-02-2020 16:27:09)

C:\Users\ondre\AppData\Local\Temp => moved successfully

==== End of Fixlog 16:27:10 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#10 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ondbou
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 26 srp 2008 08:08

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#11 Příspěvek od ondbou »

Prověřím pořádně a dám vědět, zatím dík.
BTW: něco zase pošlu na provoz :-)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu- velmi pomalý počítač.

#12 Příspěvek od Rudy »

Rádo se stalo a za příspěvek děkujeme! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“