Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosím o kontrolu logu - netbook

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
neummi
Návštěvník
Návštěvník
Příspěvky: 91
Registrován: 25 lis 2007 12:55

prosím o kontrolu logu - netbook

#1 Příspěvek od neummi »

Zdravím, prosím o kontrolu logu u velmi starého netbooku. Jeho rychlost nebyla nikdy závratná, ale když jsem viděl na čem sestra pracuje tak jsem musel smeknout klobouk :) .Jen přihlášení na forum a vytvoření logu trvalo několik hodin :D :D . Snad pročištění trochu pomůže. Děkuji :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Dam (administrator) on JANICKA (Acer Aspire E3-111) (08-05-2020 23:06:58)
Running from C:\Users\Dam\Desktop
Loaded Profiles: Dam (Available Profiles: Dam)
Platform: Windows 8.1 Connected (Update) (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\SysWOW64\UMonit64.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <4>
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe <2>
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe
(Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\71015D3C-E190-49EA-90EF-ECFAD6A458DD\DismHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19537_none_fa5691419b168859\TiWorker.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\65.0.3467.78\opera_autoupdate.exe <2>
(pdfforge GmbH -> © pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(Qualcomm Atheros -> ) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Seznam.cz, a.s. -> ) C:\Users\Dam\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\Dam\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <4>
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Zyxel Communications Corporation -> Zyxel Communications Corp.) C:\Program Files (x86)\Zyxel\ZyWALL SecuExtender\SecuExtenderHelper.exe
Failed to access process -> chrome.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108216 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Dam\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Dam\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [HP PageWide Pro 477dw MFP (NET)] => C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\ScanToPCActivationApp.exe [3736200 2018-03-22] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {2a8cedeb-3c5d-11e6-82a8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {5343a348-c7b1-11e8-82f8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\80.1.3901.162\Installer\chrmstp.exe [2020-04-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-26] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> c:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll [2013-09-05] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1121D45B-7E8A-49C1-BA9C-9F6AFA5DA7D0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {1B4352D2-FC13-425B-B3A7-99FEB62DE066} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-03-01] (Avast Software s.r.o. -> Avast Software)
Task: {1DA80A25-EB3D-453B-B834-A3F5DAC83A76} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {2876B0F4-2192-41D4-87AC-F2B99DD02424} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [53248 2014-02-26] () [File not signed]
Task: {3F7E0AB1-11AF-410E-972A-F4CFA855F281} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {490E274B-6BC4-4269-B67D-ED8A9D6C13EB} - System32\Tasks\Opera scheduled Autoupdate 1419537834 => C:\Program Files (x86)\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software)
Task: {5C0AF1EF-892E-4F0F-987A-B21B3277B911} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {65F2A040-AA53-457A-A6A8-AA99A9E261DF} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6A827775-E479-489D-9C1F-78F829FBF192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {6E92F618-2CE4-44F7-9767-DF7212C427C6} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2016-08-15] (Acer Incorporated -> )
Task: {70FC67B0-818F-4D4D-873C-ACCA3ED9986E} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> )
Task: {76D209F1-ADB5-4C38-82EB-EDECAF67A834} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {84923E68-6F03-4A39-B1F4-C29DA206303C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {878DCA75-096F-4383-8579-239DF2252C4F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {975C3351-621D-48A2-9E8C-8F7CD050363F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1875592 2020-04-02] (Avast Software s.r.o. -> AVAST Software)
Task: {A2BA51B4-45E0-414B-9936-3788D8752B51} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A94DF6D5-E7BA-4B7D-B40A-085AEA5FB107} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B2614036-8666-4142-9C96-F4014808DDC0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {C9971696-B95A-4222-857D-97B40A893FA7} - System32\Tasks\avastBCLRestartS-1-5-21-2704009275-1282577100-1869883960-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {CBD98AA0-7B29-409E-B2B1-22026D67666D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {D826272E-86CD-4A0F-8B7C-C2A4ABDC661E} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [439016 2014-03-17] (Acer Incorporated -> Acer Incorporate)
Task: {E6A7F24D-9883-40AC-9BE6-12FDA9BE33DC} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [4150312 2013-07-08] (Acer Incorporated -> )
Task: {EDE3FBDB-5A0F-4C9C-A30D-9D9C6CD60B43} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [490728 2014-03-19] (Acer Incorporated -> Acer Incorporated)
Task: {F33CB7DA-01D8-48DB-AD60-ED7EA9F73CAA} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [264424 2014-03-21] (Acer Incorporated -> Acer Incorporated)
Task: {F90774E9-4104-45C6-9308-4FF367F77995} - System32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
Task: {FB3CF41B-072A-4C3A-8C69-F71950EB537A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1875592 2020-04-02] (Avast Software s.r.o. -> AVAST Software)
Task: {FB81D692-E2F0-4FA7-99DB-2840DA641209} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1738504 2015-09-04] (Intel(R) Software -> Intel Corporation)
Task: {FD0F6AC4-4FB2-422D-9774-51AD3EE0526D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3325032 2020-04-22] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: 192.168.105.222 server-eling
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{25E5648C-3587-4CD5-A217-9D15BBCFAA70}: [NameServer] 192.168.105.222,1.1.2.1
Tcpip\..\Interfaces\{32F6CC93-A00A-4A94-B519-16505291B2CC}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CC20E249-4321-4363-9B84-1866D4127F62}: [DhcpNameServer] 217.197.152.132 217.197.144.22

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={1EE813B6-5894-41E7-A700-F2269577992D}&mid=5f4ed1f96bc547cda13c151d02a93726-046696c2085fe02b98b0f990ff5d04332226b7a8&lang=en&ds=sc011&coid=avgtbdissc&cmpid=&pr=sa&d=2015-07-29 08:57:53&v=18.8.0.179&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {1034F0FF-864F-41EC-8835-E9F653C356A8} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {6198F94D-CFA6-4D49-BEBF-4CA9D0567E4A} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {643DC58B-A6CE-4DA0-BA5A-B42B5113E6F3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {7F04A5FD-352F-48E6-83A4-F86179811C8E} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {88483E45-2C18-45AB-AC84-057CD43B447E} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {8A6BB0C2-C611-4102-9043-2B7DEE7BE94A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={1EE813B6-5894-41E7-A700-F2269577992D}&mid=5f4ed1f96bc547cda13c151d02a93726-046696c2085fe02b98b0f990ff5d04332226b7a8&lang=en&ds=sc011&coid=avgtbdissc&cmpid=&pr=sa&d=2015-07-29 08:57:53&v=18.8.0.179&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {99945EA2-E961-47AD-A874-42CA0AAF29EE} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {9D6BFB22-463B-434B-B0BF-D70F870983F7} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {C0F1B0EE-E74A-448F-9A4E-99D789E33799} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator-ie-helper.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator-ie-plugin.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)

FireFox:
========
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Users\Dam\Desktop\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default [2020-05-08]
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://www.astratex.cz; hxxps://www.facebook.com; hxxps://www.knihcentrum.cz
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Extension: (Prezentace) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-23]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-24]
CHR Extension: (YouTube) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Vyhledávání Google) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-09]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-23]
CHR Extension: (Gmail) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5504928 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [345384 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\80.1.3901.162\elevation_service.exe [973760 2020-04-02] (Avast Software s.r.o. -> AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated -> Acer Incorporated)
R2 DptfParticipantAcpiProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-09-17] (Intel(R) Software -> Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [150760 2013-09-17] (Intel(R) Software -> Intel Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2014-03-21] (Acer Incorporated -> Acer Incorporated)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [153296 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [478416 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporated -> Acer Incorporate)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2706824 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [1048976 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [856976 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-28] (pdfforge GmbH -> © pdfforge GmbH.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 ZyWALL SecuExtender Helper; C:\Program Files (x86)\Zyxel\ZyWALL SecuExtender\SecuExtenderHelper.exe [85648 2016-12-22] (Zyxel Communications Corporation -> Zyxel Communications Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37856 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206120 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234776 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178968 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60696 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42984 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175920 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [500960 2020-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109480 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85056 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851808 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [459408 2020-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235696 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317280 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R3 DptfDevAcpiProc; C:\Windows\system32\DRIVERS\DptfDevAcpiProc.sys [198808 2013-09-17] (Intel(R) Software -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [78504 2013-09-17] (Intel(R) Software -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [493240 2013-09-17] (Intel(R) Software -> Intel Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-26] (Disc Soft Ltd -> Disc Soft Ltd)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [107208 2014-01-17] (Genesys Logic,INC. -> GenesysLogic)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated -> Acer Incorporated)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-12-10] (Intel(R) Software -> Intel Corporation)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel(R) Technology Access -> Intel Corporation)
R3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2015-04-30] (Intel(R) Technology Access -> Intel Corporation)
S3 qcfilter; C:\Windows\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbnet; C:\Windows\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated -> Acer Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901_zyxel; C:\Windows\system32\DRIVERS\tap0901_zyxel.sys [40344 2016-12-21] (Zyxel Communications Corporation -> The OpenVPN Project)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-08 23:06 - 2020-05-08 23:48 - 000036505 _____ C:\Users\Dam\Desktop\FRST.txt
2020-05-08 22:20 - 2020-05-08 23:37 - 000000000 ____D C:\FRST
2020-05-08 22:15 - 2020-05-08 22:16 - 002283520 _____ (Farbar) C:\Users\Dam\Desktop\FRST64.exe
2020-05-08 21:34 - 2020-05-08 21:38 - 002011136 _____ (Farbar) C:\Users\Dam\Downloads\FRST (1).exe
2020-05-08 21:34 - 2020-05-08 21:38 - 002011136 _____ (Farbar) C:\Users\Dam\Desktop\FRST.exe
2020-04-28 09:16 - 2020-04-28 09:16 - 000310012 _____ C:\Users\Dam\Desktop\Etický kodex_Profesní svaz_verII.pdf
2020-04-28 08:37 - 2020-04-28 08:37 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-04-27 11:06 - 2020-04-27 11:06 - 000496865 _____ C:\Users\Dam\Downloads\NPI Speciál pro podporu výuky na dálku č. 7.pdf
2020-04-27 10:58 - 2020-04-27 10:59 - 000294327 _____ C:\Users\Dam\Downloads\NPI Infolist duben 2020.pdf
2020-04-26 16:54 - 2020-04-26 16:54 - 000704512 _____ C:\Users\Dam\Downloads\Vlckova Kamila - Ekologicky_projekt_tridim.pdf
2020-04-26 16:54 - 2020-04-26 16:54 - 000704512 _____ C:\Users\Dam\Downloads\Vlckova Kamila - Ekologicky_projekt_tridim (1).pdf
2020-04-24 15:51 - 2020-04-24 15:51 - 000001330 _____ C:\Users\Public\Desktop\Skype.lnk
2020-04-24 15:51 - 2020-04-24 15:51 - 000001330 _____ C:\ProgramData\Desktop\Skype.lnk
2020-04-24 15:51 - 2020-04-24 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-04-24 15:19 - 2020-04-24 17:35 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-22 15:19 - 2020-04-22 15:19 - 001677665 _____ C:\Users\Dam\Downloads\dokreslovani-jehlicnany-f6417.pdf
2020-04-22 15:19 - 2020-04-22 15:19 - 001214288 _____ C:\Users\Dam\Downloads\cesta-od-vajicka-f6497.pdf
2020-04-22 15:16 - 2020-04-22 15:16 - 000204793 _____ C:\Users\Dam\Downloads\jarni-kvetiny-f6459.pdf
2020-04-22 15:16 - 2020-04-22 15:16 - 000042239 _____ C:\Users\Dam\Downloads\javorova-vrtulka-a4-f7459.pdf
2020-04-22 15:15 - 2020-04-22 15:15 - 000674274 _____ C:\Users\Dam\Downloads\malovani-podle-odpadku2-f7109.pdf
2020-04-22 15:14 - 2020-04-22 15:14 - 002360418 _____ C:\Users\Dam\Downloads\pl-vili-hratky-f6705.pdf
2020-04-22 15:14 - 2020-04-22 15:14 - 000388549 _____ C:\Users\Dam\Downloads\podzim-f7063.pdf
2020-04-22 15:13 - 2020-04-22 15:13 - 000186044 _____ C:\Users\Dam\Downloads\ptaci-na-krmitku-presmycky-f6432.pdf
2020-04-22 15:12 - 2020-04-22 15:12 - 000990589 _____ C:\Users\Dam\Downloads\spojovani-stopy-f6416.pdf
2020-04-22 15:12 - 2020-04-22 15:12 - 000094294 _____ C:\Users\Dam\Downloads\tazni-ptaci-f6844.pdf
2020-04-22 15:11 - 2020-04-22 15:11 - 000161187 _____ C:\Users\Dam\Downloads\vodni-car-bytosti-f6946.pdf
2020-04-22 15:09 - 2020-04-22 15:09 - 002382237 _____ C:\Users\Dam\Downloads\hledej-ptaky.pdf
2020-04-22 15:09 - 2020-04-22 15:09 - 000612777 _____ C:\Users\Dam\Downloads\Letni_seznam_zazitku.pdf
2020-04-22 15:08 - 2020-04-22 15:08 - 001153977 _____ C:\Users\Dam\Downloads\pribeh-sykorky-a-vlastovky.pdf
2020-04-22 14:44 - 2020-04-22 14:45 - 006553681 _____ C:\Users\Dam\Downloads\Pracovni_listy_1_rocnik_w.pdf
2020-04-22 14:43 - 2020-04-22 14:43 - 005115375 _____ C:\Users\Dam\Downloads\Pracovni_listy_2_rocnik_w.pdf
2020-04-22 14:42 - 2020-04-22 14:42 - 000224959 _____ C:\Users\Dam\Downloads\Královký-pergamen-královká-listina-pracovní-list.pdf
2020-04-22 14:41 - 2020-04-22 14:41 - 003793435 _____ C:\Users\Dam\Downloads\Pracovni_listy_3_rocnik_w.pdf
2020-04-22 14:39 - 2020-04-22 14:39 - 001567027 _____ C:\Users\Dam\Downloads\Královký-pergamen-metodika.pdf
2020-04-22 14:39 - 2020-04-22 14:39 - 000998939 _____ C:\Users\Dam\Downloads\skritek-a-koronaviry.pdf
2020-04-22 14:38 - 2020-04-22 14:38 - 000141312 _____ C:\Users\Dam\Downloads\omalovanka_eda.pdf
2020-04-22 14:37 - 2020-04-22 14:37 - 000340334 _____ C:\Users\Dam\Downloads\omalovanka_rousky.pdf
2020-04-22 14:35 - 2020-04-22 14:35 - 000215516 _____ C:\Users\Dam\Downloads\den-zeme.pdf
2020-04-22 14:18 - 2020-04-23 18:51 - 000500960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-04-22 14:18 - 2020-04-22 14:17 - 000337048 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-04-22 14:18 - 2020-04-22 14:17 - 000235696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-04-22 14:18 - 2020-04-22 14:17 - 000175920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-04-22 14:11 - 2020-04-23 18:52 - 000000000 ____D C:\Users\Dam\Desktop\družina materiály

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-30 09:23 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2020-04-30 09:13 - 2014-12-24 21:10 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2704009275-1282577100-1869883960-1001
2020-04-30 09:09 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-30 09:09 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2020-04-30 08:16 - 2014-12-25 18:35 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-30 08:16 - 2014-12-25 18:35 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-30 08:16 - 2014-12-25 18:35 - 000002207 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-04-30 07:45 - 2014-12-25 22:03 - 000000000 ____D C:\Program Files (x86)\Opera
2020-04-28 08:58 - 2018-04-06 11:18 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-04-28 08:58 - 2018-04-06 11:18 - 000002410 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-04-28 08:58 - 2018-04-06 11:18 - 000002410 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-04-28 08:43 - 2019-11-27 11:04 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-04-27 12:01 - 2014-12-24 22:00 - 000000000 ____D C:\Users\Dam\AppData\Local\CrashDumps
2020-04-27 11:18 - 2018-02-01 14:54 - 000000000 _____ C:\Windows\system32\last.dump
2020-04-24 17:36 - 2015-12-04 09:36 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-04-24 17:36 - 2015-05-20 07:32 - 000003110 _____ C:\Windows\system32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1}
2020-04-24 17:36 - 2014-04-26 06:10 - 000002930 _____ C:\Windows\system32\Tasks\Power Management
2020-04-24 17:36 - 2014-04-26 05:45 - 000003016 _____ C:\Windows\system32\Tasks\UMonitor Task
2020-04-24 17:35 - 2017-11-14 20:26 - 000003338 _____ C:\Windows\system32\Tasks\abDocsDllLoader
2020-04-24 17:35 - 2015-10-08 15:32 - 000003746 _____ C:\Windows\system32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d
2020-04-24 17:35 - 2015-10-08 15:32 - 000003500 _____ C:\Windows\system32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon
2020-04-24 17:35 - 2015-07-29 08:14 - 000003440 _____ C:\Windows\system32\Tasks\BacKGroundAgent
2020-04-24 17:35 - 2015-05-20 07:15 - 000002784 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-24 17:35 - 2015-02-25 09:33 - 000003718 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2020-04-24 17:35 - 2015-02-25 09:33 - 000003476 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2020-04-24 17:35 - 2014-12-25 22:04 - 000003844 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1419537834
2020-04-24 17:35 - 2014-12-25 18:34 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-24 17:35 - 2014-12-25 18:34 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-24 17:35 - 2014-04-26 06:07 - 000002904 _____ C:\Windows\system32\Tasks\Launch Manager
2020-04-24 17:35 - 2014-04-07 05:55 - 000004402 _____ C:\Windows\system32\Tasks\ALUAgent
2020-04-24 17:35 - 2014-04-07 05:55 - 000003628 _____ C:\Windows\system32\Tasks\ALU
2020-04-24 16:38 - 2014-12-26 17:36 - 000000000 ____D C:\Windows\system32\MRT
2020-04-24 16:17 - 2015-06-19 12:25 - 000001090 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-04-24 16:17 - 2015-06-19 12:25 - 000001090 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-04-24 16:12 - 2014-12-26 17:36 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-04-24 16:00 - 2014-12-25 17:51 - 000000000 ____D C:\Users\Dam\AppData\Roaming\Skype
2020-04-24 15:59 - 2016-03-05 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-24 15:58 - 2016-03-05 12:42 - 000099192 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2020-04-24 15:54 - 2016-03-05 12:41 - 000000000 ____D C:\Program Files (x86)\Java
2020-04-24 15:49 - 2017-03-16 21:04 - 000000000 ___RD C:\Program Files (x86)\Skype
2020-04-24 15:49 - 2014-12-25 13:48 - 000000000 ____D C:\ProgramData\Skype
2020-04-24 15:42 - 2014-12-25 21:58 - 000001128 _____ C:\Users\Public\Desktop\WinRAR.lnk
2020-04-24 15:42 - 2014-12-25 21:58 - 000001128 _____ C:\ProgramData\Desktop\WinRAR.lnk
2020-04-24 15:42 - 2014-12-25 21:58 - 000000000 ____D C:\Users\Dam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-24 15:42 - 2014-12-25 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-24 15:41 - 2014-12-25 21:58 - 000000000 ____D C:\Program Files\WinRAR
2020-04-24 15:18 - 2015-05-20 07:14 - 000000000 ____D C:\Program Files\CCleaner
2020-04-24 15:17 - 2015-05-20 07:15 - 000000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-04-24 15:17 - 2015-05-20 07:15 - 000000838 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-04-24 15:13 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-04-24 14:46 - 2014-04-26 05:51 - 000736058 _____ C:\Windows\system32\perfh005.dat
2020-04-24 14:46 - 2014-04-26 05:51 - 000149670 _____ C:\Windows\system32\perfc005.dat
2020-04-24 14:46 - 2014-03-18 11:47 - 001739092 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-24 14:42 - 2018-12-15 21:06 - 000000000 ___RD C:\Users\Dam\iCloudDrive
2020-04-24 14:41 - 2019-09-27 08:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-04-24 14:40 - 2019-01-10 11:45 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-24 14:40 - 2014-12-24 21:03 - 000000000 ____D C:\Users\Dam
2020-04-24 14:39 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-23 18:51 - 2014-12-25 18:34 - 000459408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-04-22 15:47 - 2019-02-20 10:43 - 000000000 ____D C:\Users\Dam\Documents\družina
2020-04-22 15:47 - 2018-10-15 20:48 - 000000000 ____D C:\Users\Dam\Documents\ESJ Projekt
2020-04-22 14:27 - 2016-10-05 15:32 - 000000000 ____D C:\Users\Dam\Documents\školka materiály
2020-04-22 14:17 - 2018-10-23 07:15 - 000042984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000317280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000109480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000085056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-04-22 14:16 - 2019-01-23 19:17 - 000234776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000178968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000060696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000037856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-04-22 14:16 - 2017-11-22 13:44 - 000206120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-04-22 14:16 - 2014-12-25 18:34 - 000851808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

==================== Files in the root of some directories ========

2020-03-31 20:52 - 2020-03-31 20:52 - 000000000 _____ () C:\Users\Dam\AppData\Local\{0971587E-F57F-4196-BB22-087ECB708F82}
2020-03-31 20:51 - 2020-03-31 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{3883EC21-54D0-4795-A6EC-D0BB90EA2BE8}
2020-03-31 20:52 - 2020-03-31 20:52 - 000000000 _____ () C:\Users\Dam\AppData\Local\{6A6F3516-2ED9-4698-85D1-68A720828AEB}
2019-03-13 17:43 - 2019-03-13 17:43 - 000000153 _____ () C:\Users\Dam\AppData\Local\{71C39BFD-6F8B-476D-8880-6AEBA1828069}
2020-03-31 20:51 - 2020-03-31 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{86D624E9-7238-4CB7-8293-1D40D2A50CCE}
2020-02-05 20:51 - 2020-02-05 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{981FCE0E-9E7B-413B-89F0-930BF50D6D2F}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-04-30 09:13
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Dam (09-05-2020 00:15:44)
Running from C:\Users\Dam\Desktop
Windows 8.1 Connected (Update) (X64) (2014-12-24 19:02:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2704009275-1282577100-1869883960-500 - Administrator - Disabled)
Dam (S-1-5-21-2704009275-1282577100-1869883960-1001 - Administrator - Enabled) => C:\Users\Dam
Guest (S-1-5-21-2704009275-1282577100-1869883960-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Avast Antivirus (Enabled - Out of date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8105 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8104 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8106 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.2003 - Acer Incorporated)
Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2001.4 - Acer Incorporated)
Adobe Reader XI (11.0.11) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Aloha TriPeaks (HKLM-x32\...\WTA-87238713-ae3b-4f3e-a369-ea2f1a129b04) (Version: 2.2.0.98 - WildTangent) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.2.2401 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 80.1.3901.162 - Autoři prohlížeče Avast Secure Browser)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Cradle Of Egypt Collector's Edition (HKLM-x32\...\WTA-560785d3-ad0d-494c-b6f9-d421bceb3976) (Version: 2.2.0.110 - WildTangent) Hidden
CwdStudio 1.1.1 (HKLM-x32\...\CwdStudio_is1) (Version: - ITPro CZ)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Game Channels (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 9.2.0.11 - WildTangent, Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.1.0 - Genesys Logic)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.46.5308 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.122 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-7d5a510d-3b7b-4af4-aca5-07d24920dc4f) (Version: 2.2.0.110 - WildTangent) Hidden
GTKRawGallery verze 0.9.9 (HKLM-x32\...\{E70E8DF1-BE6E-4701-BDA3-09241667D719}_is1) (Version: 0.9.9 - Daniele Isca)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP PageWide Pro 477dn MFP Nápověda (HKLM-x32\...\{894C4A51-92D4-41A1-A115-25594B048ADB}) (Version: 44.0.0 - HP)
I.R.I.S. OCR (HKLM-x32\...\{831BBAED-4E5B-4375-AC5F-285B76FB90D6}) (Version: 12.3.6.12 - HP)
iCloud (HKLM\...\{28ABC5D7-AF47-4476-A6AA-C2DD822ED40F}) (Version: 7.9.0.9 - Apple Inc.)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8101 - Acer Incorporated)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.10.0.2208 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Technology Access (HKLM-x32\...\{810dff4d-564d-47da-b8bc-a3729815aab7}) (Version: 1.9.1.1008 - Intel Corporation)
Intel(R) Technology Access Software Asset Manager (HKLM-x32\...\{C1C74874-4E6F-49B8-BBCD-D43E277D8D28}) (Version: 3.4.1942 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Luxor Evolved (HKLM-x32\...\WTA-04a2636c-c605-4a6b-acce-30aaba900c3a) (Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (HKLM-x32\...\WTA-fc8a4e67-26f9-4946-970a-bc1da1314604) (Version: 2.2.0.98 - WildTangent) Hidden
Manager (HKLM-x32\...\{218A9668-3355-48AA-BFE5-6957CA4A5A4C}) (Version: 5.0.22.32425 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Opera Stable 65.0.3467.78 (HKLM-x32\...\Opera 65.0.3467.78) (Version: 65.0.3467.78 - Opera Software)
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{7A5C9B23-00FB-479B-9240-8DCBD3CDF7DC}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{422024FF-15CA-4199-8DAF-DD34A8BA85DD}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{AD72FB9B-80C6-461D-B099-9DD76A62115E}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.2 - pdfforge GmbH)
Peggle Nights (HKLM-x32\...\WTA-91017e2e-5d80-4c50-937d-12aded278c14) (Version: 2.2.0.98 - WildTangent) Hidden
PhotoshopRecovery (HKLM-x32\...\PhotoshopRecovery) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-c580f914-bb85-4474-b264-8694fe0a91d4) (Version: 2.2.0.98 - WildTangent) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{80B42CAA-28C0-4FBD-A46E-D61F45E2F9FC}) (Version: 7.2 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{466D00D0-E7DE-47C2-8FE5-54A8009F5850}) (Version: 7.2 - Apple Inc.)
Prohlížeč Seznam.cz (HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.25 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7203 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\SeznamInstall) (Version: - Seznam.cz)
Shape Collage (HKLM-x32\...\ShapeCollage) (Version: - Shape Collage Inc.)
Skype verze 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.3399 - TeamViewer)
The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-ca615a20-e040-496c-b7ab-75ca0baf958e) (Version: 3.0.2.32 - WildTangent) Hidden
Trinklit Supreme (HKLM-x32\...\WTA-7b10457f-bcce-408a-b3e2-f98b4f4207ab) (Version: 2.2.0.98 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Základní software zařízení HP PageWide Pro 477dw MFP (HKLM\...\{66FD1331-D3CC-4119-B536-5CD4479410D8}) (Version: 38.7.1936.1881 - HP Inc.)
Zoo Tycoon 2 Trial Version (HKLM-x32\...\Zoo Tycoon 2 Trial Version) (Version: 1.0 - Microsoft)
ZyWALL SecuExtender (HKLM-x32\...\{82AC941C-39BC-448D-89AF-9D65CC7E8167}) (Version: 4.0.2.0 - Zyxel Communications Corp.)

Packages:
=========
- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2015-06-27] (WildTangent Games)
AccuWeather for Windows 8 -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_4.1.0.31_x64__8zz2pj9h1h1d8 [2016-08-05] (AccuWeather)
Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4 [2014-12-26] (Acer Incorporated)
Booking.com Partner Edition -> C:\Program Files\WindowsApps\4AE8B7C2.Booking.comPartnerEdition_1.2.1.0_x64__6wqyppa9wfhnr [2014-04-26] (Booking.com B.V.)
eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2014-12-26] (eBay, Inc)
Evernote Touch -> C:\Program Files\WindowsApps\Evernote.Evernote_3.3.0.102_x86__q4d96b2w5wcc2 [2016-01-21] (Evernote)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-14] (Microsoft Corporation) [MS Ad]
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.11.1807.1002_x86__8wekyb3d8bbwe [2018-07-31] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-23] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Taptiles -> C:\Program Files\WindowsApps\Microsoft.Taptiles_2.6.288.0_x86__8wekyb3d8bbwe [2018-10-30] (Microsoft Studios) [MS Ad]
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_1.1.0.0_neutral__6bhtb546zcxnj [2014-04-26] (TuneIn)
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-06] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-12-26] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-01-31] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-12-03] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ShellContextExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-04-24 15:50 - 2019-10-03 21:42 - 001901568 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000011264 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2015-07-07 11:44 - 2015-07-07 11:44 - 000088064 _____ () [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\libglog.dll
2015-12-21 19:31 - 2015-05-26 13:35 - 000079872 _____ () [File not signed] C:\Users\Dam\AppData\Roaming\Seznam.cz\bin\4473libfoxloader-x64.dll
2015-02-08 11:53 - 2015-02-08 11:53 - 000501248 _____ (iMatix Corporation) [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\libzmq-v120-mt-3_2_4.dll
2015-02-08 12:20 - 2015-02-08 12:20 - 000111840 _____ (Intel(R) Technology Access -> NT Kernel Resources) [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\ndisapi.dll
2017-05-01 13:42 - 2017-05-01 13:42 - 000116224 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000107648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000033408 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\CommApi.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000203392 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\FolderViewImpl.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000085632 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\GattI.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000126592 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\gatts.DLL
2013-12-24 11:27 - 2013-12-24 11:27 - 000083072 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Handsfree.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000034432 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ipc.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000063104 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ModuleManager.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 001067648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\OutlookLib.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000291456 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ShellContextExt.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000027264 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\TCPConnection.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000115328 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\utils.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\LE\LE.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000210944 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BIP\BIP.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\DID\DId.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FAX\Fax.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000421888 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2013-12-24 11:18 - 2013-12-24 11:18 - 000097792 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\goep\goep.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000142848 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HealthDevice\HDP.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\pbap\pbap.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\sap\sap.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\spp\spp.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Sync\Sync.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-01-10 12:01 - 2019-01-10 12:01 - 000000076 _____ C:\Windows\system32\drivers\etc\hosts
192.168.105.222 server-eling

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Acer\Remote Files\;C:\Program Files (x86)\Common Files\Apple\Internet Services\
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dam\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

Network Binding:
=============
Síť Ethernet: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)
Připojení k mís. síti: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)
Wi-Fi: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "abDocsDllLoader"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "vProt"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "HP PageWide Pro 477dw MFP (NET)"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "ApplePhotoStreams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{527C2BE1-18A5-46FF-96E9-DF246DFC2C3C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [UDP Query User{E34DAE35-9BFC-43CC-AF69-96FD0B66F243}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [{716C30C1-88B9-42B7-95D9-1F6381CF318F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{7750DE31-4A58-4F15-9B72-809FA21649CA}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{EE391FDB-F01E-4DCB-9D68-F017F72C18F2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{083DF4CA-0933-4B03-9620-A35B1205DEFC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{7CC47DBB-2405-494E-B88B-D23EAAA8D7A5}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{9C298603-607A-4B1B-B691-0F8D5233E886}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{E1EE35F3-9A81-41E7-8F02-07359B810680}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2 Trial Version\zt2demoretail.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{038EFCA7-BE71-4AAD-B904-51BD4F452521}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2 Trial Version\zt2demoretail.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{4E67FEB7-319E-410B-8333-A0391B241FBC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4415AB91-112E-442B-8113-753EEEE87D78}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EB7BB98E-8813-4FFE-916B-3462248B3F46}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{69C0BA6D-B912-4E50-AFFD-01047FC82122}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{72530469-A844-42A7-BF3A-5A7353B9978B}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{767B79FE-BD1F-4ED3-B2AC-573626EE0C6F}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F41F75A4-4DF6-4D18-BCD0-7E5FD8123726}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2ABA18C0-4BE6-4D9A-9D93-61A39A8C3455}] => (Allow) LPort=5357
FirewallRules: [{6062D18A-228F-4822-9E60-F51448543FD5}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2CBE449D-EDD1-40A8-B2E7-49570400F5AA}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F8D67B3F-D541-45B0-8BB0-52588D3F2CA2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6E0B2407-6D27-482D-B8EC-3E9B12FC097C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2D0E4857-55F9-42CA-8D40-3AC735111C99}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ED9BC065-87E9-451C-ADA1-B55E1D3B1BE1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{005963BC-CA2A-4193-9CEA-5F9DDBB159D8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C157490C-E58B-4439-A136-090D02FA79FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C304AC21-9223-4F11-8637-B5FC43D46606}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{98CF44FA-A6EC-428F-832B-AD95229D9FA3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{13D115C2-A071-433C-A220-8F03CCC08133}] => (Allow) C:\Program Files (x86)\Opera\65.0.3467.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{8721AA55-5461-4253-B580-9689A3E0E49D}] => (Allow) C:\Program Files (x86)\Opera\65.0.3467.78\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{FBDC0310-C354-4970-924C-9A06F2433047}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C84FD19E-90F4-492F-94F2-FB7DE652703B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82BB51E8-FA39-4218-BCF0-AD4E20205A25}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{14ADCE81-FB83-47B8-934B-6B716C98C9E4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

01-03-2020 17:36:39 Intel(R) Technology Access
24-04-2020 16:05:42 Windows Update
30-04-2020 09:11:04 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/08/2020 08:49:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(5102667_27078092905_0._acer._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (05/05/2020 02:55:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 78313

Error: (05/05/2020 02:55:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 78313

Error: (05/05/2020 02:55:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2020 02:55:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 76907

Error: (05/05/2020 02:55:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 76907

Error: (05/05/2020 02:55:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/05/2020 02:55:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 75516


System errors:
=============
Error: (04/30/2020 09:11:09 AM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/30/2020 09:10:54 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a42\SystemRoot\System32\Config\RegBack\SYSTEM

Error: (04/30/2020 09:13:28 AM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/28/2020 07:47:21 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a45\??\C:\Windows\AppCompat\Programs\Amcache.hve

Error: (04/26/2020 04:04:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby IKEEXT bylo dosaženo časového limitu (30000 ms).

Error: (04/26/2020 04:04:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).

Error: (04/24/2020 05:37:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): Sady Microsoft .NET Framework 4.8 Language Pack v systému Windows 8.1 a Server 2012 R2 pro platformu x64 (KB4087514).

Error: (04/24/2020 05:37:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80246013): 2020-02 Aktualizace zabezpečení pro Adobe Flash Player pro Windows 8.1 pro systémy typu x64 (KB4537759).


Windows Defender:
===================================
Date: 2016-09-17 10:47:56.715
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {53B05FD1-6D33-49A7-8E25-143A2CDA5DFA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2015-07-29 22:02:24.696
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {FA56D9B9-A441-4C24-9E18-1D519F92CE5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2016-09-17 10:06:00.553
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.203.1046.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.11903.0
Kód chyby: 0x80070643
Popis chyby :Při instalaci došlo k závažné chybě.

Date: 2015-07-29 19:08:54.474
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.163.1568.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.10100.0
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2015-07-29 19:08:54.462
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.163.1568.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.10100.0
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2018-03-26 19:33:40.281
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:36.187
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:33.604
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:29.690
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:26.595
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:23.684
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:20.690
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:16.134
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.05 04/11/2014
Motherboard: Acer Roxy
Processor: Intel(R) Celeron(R) CPU N2830 @ 2.16GHz
Percentage of memory in use: 95%
Total physical RAM: 1930.2 MB
Available physical RAM: 80.84 MB
Total Virtual: 5411.06 MB
Available Virtual: 1005.12 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:449.26 GB) (Free:193.7 GB) NTFS

\\?\Volume{b6ea7126-82dd-4414-96dc-f52c047df6a3}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.31 GB) NTFS
\\?\Volume{c0b7a1b4-6491-45eb-8a76-3ad9a652a69f}\ (Push Button Reset) (Fixed) (Total:15.5 GB) (Free:2.03 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B10EA505)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: prosím o kontrolu logu - netbook

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

neummi
Návštěvník
Návštěvník
Příspěvky: 91
Registrován: 25 lis 2007 12:55

Re: prosím o kontrolu logu - netbook

#3 Příspěvek od neummi »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-09-2020
# Duration: 00:02:02
# OS: Windows 8.1 Connected
# Cleaned: 73
# Failed: 2


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Dam\AppData\Local\Seznam.cz
Deleted C:\Users\Dam\AppData\Roaming\Seznam.cz

***** [ Files ] *****

Deleted C:\Users\Dam\Favorites\Booking.com.url

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\TBDEn|SBOEM2
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ACERAOPFramework Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|BacKGround Agent
Deleted Preinstalled.ACERAOPFramework Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4A37A114-702F-4055-A4B6-16571D4A5353}
Deleted Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Deleted Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Deleted Preinstalled.AcerDocsOfficeAddIn Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DCBF3379-246B-47E1-8173-639B63940838}
Deleted Preinstalled.AcerExplorerAgent Folder C:\Program Files\ACER\ACER EXPLORER AGENT
Deleted Preinstalled.AcerExplorerAgent Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}
Deleted Preinstalled.AcerIdentityCard Folder C:\Program Files (x86)\ACER\IDENTITY CARD
Deleted Preinstalled.AcerIdentityCard Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3D9CB654-99AD-4301-89C6-0D12A790767C}
Deleted Preinstalled.AcerLiveUpdater Folder C:\Program Files (x86)\ACER\LIVE UPDATER
Deleted Preinstalled.AcerPortal Folder C:\Program Files (x86)\ACER\ACER PORTAL
Deleted Preinstalled.AcerPortal Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|AcerPortal
Deleted Preinstalled.AcerPortal Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
Deleted Preinstalled.AcerPowerManagement Folder C:\Program Files\ACER\ACER POWER MANAGEMENT
Deleted Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\PLUGIN\APPMONITOR
Deleted Preinstalled.AcerUEIPFramework Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12A718F2-2357-4D41-9E1F-18583A4745F7}
Deleted Preinstalled.AcerUpdater Folder C:\ProgramData\ACER\ACER UPDATER
Deleted Preinstalled.AcerabBox Registry HKLM\Software\Classes\CLSID\{5CCE71FA-9F61-4F24-9CD1-98D819B40D68}
Deleted Preinstalled.AcerabDocs File C:\Users\Public\Desktop\abDocs.lnk
Deleted Preinstalled.AcerabDocs Folder C:\Program Files (x86)\ACER\ABDOCS OFFICE ADDIN
Deleted Preinstalled.AcerabDocs Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E92F618-2CE4-44F7-9767-DF7212C427C6}
Deleted Preinstalled.AcerabDocs Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\abDocsDllLoader
Deleted Preinstalled.AcerabDocs Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|abDocsDllLoader
Deleted Preinstalled.AcerabDocs Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
Deleted Preinstalled.AcerabDocs Task C:\Windows\System32\Tasks\ABDOCSDLLLOADER
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70FC67B0-818F-4D4D-873C-ACCA3ED9986E}
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70FC67B0-818F-4D4D-873C-ACCA3ED9986E}
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6A7F24D-9883-40AC-9BE6-12FDA9BE33DC}
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALU
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALUAgent
Deleted Preinstalled.GatewayLiveUpdater Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999}
Deleted Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALU
Deleted Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALUAGENT
Deleted Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F33CB7DA-01D8-48DB-AD60-ED7EA9F73CAA}
Deleted Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Management
Deleted Preinstalled.GatewayPowerManagement Task C:\Windows\System32\Tasks\POWER MANAGEMENT
Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk
Deleted Preinstalled.PackardBellPowerManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{91F52DE4-B789-42B0-9311-A349F10E5479}
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\ALOHA TRIPEAKS
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\CRADLE OF EGYPT COLLECTORS EDITION
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\GOVERNOR OF POKER 2 PREMIUM EDITION
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\LUXOR EVOLVED
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\MAGIC ACADEMY
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\PEGGLE NIGHTS
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\PLANTS VS ZOMBIES - GAME OF THE YEAR
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDGAMES\TRINKLIT SUPREME
Deleted Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangent wildgames Master Uninstall
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-acer-genres
Deleted Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-acer-main
Not Deleted Preinstalled.ACERAOPFramework Folder C:\Program Files (x86)\ACER\AOP FRAMEWORK
Not Deleted Preinstalled.AcerabDocs Folder C:\Program Files (x86)\ACER\ABDOCS


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [9869 octets] - [09/05/2020 13:15:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: prosím o kontrolu logu - netbook

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

neummi
Návštěvník
Návštěvník
Příspěvky: 91
Registrován: 25 lis 2007 12:55

Re: prosím o kontrolu logu - netbook

#5 Příspěvek od neummi »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-05-2020
Ran by Dam (administrator) on JANICKA (Acer Aspire E3-111) (09-05-2020 20:09:06)
Running from C:\Users\Dam\Downloads
Loaded Profiles: Dam (Available Profiles: Dam)
Platform: Windows 8.1 Connected (Update) (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\SysWOW64\UMonit64.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe
(Intel(R) Technology Access -> Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(pdfforge GmbH -> © pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(Qualcomm Atheros -> ) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Zyxel Communications Corporation -> Zyxel Communications Corp.) C:\Program Files (x86)\Zyxel\ZyWALL SecuExtender\SecuExtenderHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108216 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [HP PageWide Pro 477dw MFP (NET)] => C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\ScanToPCActivationApp.exe [3736200 2018-03-22] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {2a8cedeb-3c5d-11e6-82a8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {5343a348-c7b1-11e8-82f8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\Installer\chrmstp.exe [2020-05-09] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-09] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> c:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll [2013-09-05] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1121D45B-7E8A-49C1-BA9C-9F6AFA5DA7D0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {1B4352D2-FC13-425B-B3A7-99FEB62DE066} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-03-01] (Avast Software s.r.o. -> Avast Software)
Task: {1DA80A25-EB3D-453B-B834-A3F5DAC83A76} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {2876B0F4-2192-41D4-87AC-F2B99DD02424} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [53248 2014-02-26] () [File not signed]
Task: {3F7E0AB1-11AF-410E-972A-F4CFA855F281} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {490E274B-6BC4-4269-B67D-ED8A9D6C13EB} - System32\Tasks\Opera scheduled Autoupdate 1419537834 => C:\Program Files (x86)\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software)
Task: {5C0AF1EF-892E-4F0F-987A-B21B3277B911} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {65F2A040-AA53-457A-A6A8-AA99A9E261DF} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6A827775-E479-489D-9C1F-78F829FBF192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {76D209F1-ADB5-4C38-82EB-EDECAF67A834} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {79B50737-02E0-4630-885B-521C9A652D65} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {84923E68-6F03-4A39-B1F4-C29DA206303C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {878DCA75-096F-4383-8579-239DF2252C4F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {A2BA51B4-45E0-414B-9936-3788D8752B51} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A94DF6D5-E7BA-4B7D-B40A-085AEA5FB107} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B2614036-8666-4142-9C96-F4014808DDC0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {B39DDB78-64DD-4E12-94E1-97DD7D8A3351} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {C9971696-B95A-4222-857D-97B40A893FA7} - System32\Tasks\avastBCLRestartS-1-5-21-2704009275-1282577100-1869883960-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {CBD98AA0-7B29-409E-B2B1-22026D67666D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {D826272E-86CD-4A0F-8B7C-C2A4ABDC661E} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [439016 2014-03-17] (Acer Incorporated -> Acer Incorporate)
Task: {EDE3FBDB-5A0F-4C9C-A30D-9D9C6CD60B43} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [490728 2014-03-19] (Acer Incorporated -> Acer Incorporated)
Task: {F90774E9-4104-45C6-9308-4FF367F77995} - System32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
Task: {FB81D692-E2F0-4FA7-99DB-2840DA641209} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1738504 2015-09-04] (Intel(R) Software -> Intel Corporation)
Task: {FD0F6AC4-4FB2-422D-9774-51AD3EE0526D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3325032 2020-04-22] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: 192.168.105.222 server-eling
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{25E5648C-3587-4CD5-A217-9D15BBCFAA70}: [NameServer] 192.168.105.222,1.1.2.1
Tcpip\..\Interfaces\{32F6CC93-A00A-4A94-B519-16505291B2CC}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CC20E249-4321-4363-9B84-1866D4127F62}: [DhcpNameServer] 217.197.152.132 217.197.144.22

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {1034F0FF-864F-41EC-8835-E9F653C356A8} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {6198F94D-CFA6-4D49-BEBF-4CA9D0567E4A} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {643DC58B-A6CE-4DA0-BA5A-B42B5113E6F3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {7F04A5FD-352F-48E6-83A4-F86179811C8E} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {88483E45-2C18-45AB-AC84-057CD43B447E} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {8A6BB0C2-C611-4102-9043-2B7DEE7BE94A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {99945EA2-E961-47AD-A874-42CA0AAF29EE} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {9D6BFB22-463B-434B-B0BF-D70F870983F7} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {C0F1B0EE-E74A-448F-9A4E-99D789E33799} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator-ie-helper.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator-ie-plugin.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)

FireFox:
========
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Users\Dam\Desktop\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default [2020-05-09]
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://www.astratex.cz; hxxps://www.facebook.com; hxxps://www.knihcentrum.cz
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Prezentace) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-24]
CHR Extension: (YouTube) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Vyhledávání Google) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-09]
CHR Extension: (Gmail) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Dam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-09]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5504928 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [345384 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\elevation_service.exe [954600 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated -> Acer Incorporated)
R2 DptfParticipantAcpiProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-09-17] (Intel(R) Software -> Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [150760 2013-09-17] (Intel(R) Software -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [153296 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [478416 2016-04-26] (Intel(R) Technology Access -> Intel(R) Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporated -> Acer Incorporate)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2706824 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [1048976 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [856976 2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-28] (pdfforge GmbH -> © pdfforge GmbH.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 ZyWALL SecuExtender Helper; C:\Program Files (x86)\Zyxel\ZyWALL SecuExtender\SecuExtenderHelper.exe [85648 2016-12-22] (Zyxel Communications Corporation -> Zyxel Communications Corp.)
S3 ePowerSvc; "C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37856 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206120 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234776 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178968 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60696 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42984 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175920 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [500960 2020-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109480 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85056 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851808 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [459408 2020-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235696 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317280 2020-04-22] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R3 DptfDevAcpiProc; C:\Windows\system32\DRIVERS\DptfDevAcpiProc.sys [198808 2013-09-17] (Intel(R) Software -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [78504 2013-09-17] (Intel(R) Software -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [493240 2013-09-17] (Intel(R) Software -> Intel Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-26] (Disc Soft Ltd -> Disc Soft Ltd)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [107208 2014-01-17] (Genesys Logic,INC. -> GenesysLogic)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated -> Acer Incorporated)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-12-10] (Intel(R) Software -> Intel Corporation)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel(R) Technology Access -> Intel Corporation)
R3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2015-04-30] (Intel(R) Technology Access -> Intel Corporation)
S3 qcfilter; C:\Windows\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbnet; C:\Windows\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated -> Acer Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901_zyxel; C:\Windows\system32\DRIVERS\tap0901_zyxel.sys [40344 2016-12-21] (Zyxel Communications Corporation -> The OpenVPN Project)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-09 20:09 - 2020-05-09 20:13 - 000031454 _____ C:\Users\Dam\Downloads\FRST.txt
2020-05-09 20:05 - 2020-05-09 20:07 - 002283520 _____ (Farbar) C:\Users\Dam\Downloads\FRST64.exe
2020-05-09 19:59 - 2020-05-09 19:59 - 000000000 ___HD C:\$AV_ASW
2020-05-09 13:01 - 2020-05-09 13:02 - 008196784 _____ (Malwarebytes) C:\Users\Dam\Downloads\adwcleaner_8.0.4 (2).exe
2020-05-09 13:01 - 2020-05-09 13:02 - 008196784 _____ (Malwarebytes) C:\Users\Dam\Downloads\adwcleaner_8.0.4 (1).exe
2020-05-09 13:01 - 2020-05-09 13:02 - 008196784 _____ (Malwarebytes) C:\Users\Dam\Desktop\adwcleaner_8.0.4.exe
2020-05-09 12:32 - 2020-05-09 12:32 - 000000000 ____D C:\Users\Dam\AppData\Local\mbamtray
2020-05-09 12:32 - 2020-05-09 12:32 - 000000000 ____D C:\Users\Dam\AppData\Local\mbam
2020-05-09 12:22 - 2020-05-09 12:22 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-08 22:20 - 2020-05-09 20:11 - 000000000 ____D C:\FRST
2020-04-28 09:16 - 2020-04-28 09:16 - 000310012 _____ C:\Users\Dam\Desktop\Etický kodex_Profesní svaz_verII.pdf
2020-04-28 08:37 - 2020-05-09 15:30 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-04-27 11:06 - 2020-04-27 11:06 - 000496865 _____ C:\Users\Dam\Downloads\NPI Speciál pro podporu výuky na dálku č. 7.pdf
2020-04-27 10:58 - 2020-04-27 10:59 - 000294327 _____ C:\Users\Dam\Downloads\NPI Infolist duben 2020.pdf
2020-04-26 16:54 - 2020-04-26 16:54 - 000704512 _____ C:\Users\Dam\Downloads\Vlckova Kamila - Ekologicky_projekt_tridim.pdf
2020-04-26 16:54 - 2020-04-26 16:54 - 000704512 _____ C:\Users\Dam\Downloads\Vlckova Kamila - Ekologicky_projekt_tridim (1).pdf
2020-04-24 15:51 - 2020-04-24 15:51 - 000001330 _____ C:\Users\Public\Desktop\Skype.lnk
2020-04-24 15:51 - 2020-04-24 15:51 - 000001330 _____ C:\ProgramData\Desktop\Skype.lnk
2020-04-24 15:51 - 2020-04-24 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-04-24 15:19 - 2020-04-24 17:35 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-22 15:19 - 2020-04-22 15:19 - 001677665 _____ C:\Users\Dam\Downloads\dokreslovani-jehlicnany-f6417.pdf
2020-04-22 15:19 - 2020-04-22 15:19 - 001214288 _____ C:\Users\Dam\Downloads\cesta-od-vajicka-f6497.pdf
2020-04-22 15:16 - 2020-04-22 15:16 - 000204793 _____ C:\Users\Dam\Downloads\jarni-kvetiny-f6459.pdf
2020-04-22 15:16 - 2020-04-22 15:16 - 000042239 _____ C:\Users\Dam\Downloads\javorova-vrtulka-a4-f7459.pdf
2020-04-22 15:15 - 2020-04-22 15:15 - 000674274 _____ C:\Users\Dam\Downloads\malovani-podle-odpadku2-f7109.pdf
2020-04-22 15:14 - 2020-04-22 15:14 - 002360418 _____ C:\Users\Dam\Downloads\pl-vili-hratky-f6705.pdf
2020-04-22 15:14 - 2020-04-22 15:14 - 000388549 _____ C:\Users\Dam\Downloads\podzim-f7063.pdf
2020-04-22 15:13 - 2020-04-22 15:13 - 000186044 _____ C:\Users\Dam\Downloads\ptaci-na-krmitku-presmycky-f6432.pdf
2020-04-22 15:12 - 2020-04-22 15:12 - 000990589 _____ C:\Users\Dam\Downloads\spojovani-stopy-f6416.pdf
2020-04-22 15:12 - 2020-04-22 15:12 - 000094294 _____ C:\Users\Dam\Downloads\tazni-ptaci-f6844.pdf
2020-04-22 15:11 - 2020-04-22 15:11 - 000161187 _____ C:\Users\Dam\Downloads\vodni-car-bytosti-f6946.pdf
2020-04-22 15:09 - 2020-04-22 15:09 - 002382237 _____ C:\Users\Dam\Downloads\hledej-ptaky.pdf
2020-04-22 15:09 - 2020-04-22 15:09 - 000612777 _____ C:\Users\Dam\Downloads\Letni_seznam_zazitku.pdf
2020-04-22 15:08 - 2020-04-22 15:08 - 001153977 _____ C:\Users\Dam\Downloads\pribeh-sykorky-a-vlastovky.pdf
2020-04-22 14:44 - 2020-04-22 14:45 - 006553681 _____ C:\Users\Dam\Downloads\Pracovni_listy_1_rocnik_w.pdf
2020-04-22 14:43 - 2020-04-22 14:43 - 005115375 _____ C:\Users\Dam\Downloads\Pracovni_listy_2_rocnik_w.pdf
2020-04-22 14:42 - 2020-04-22 14:42 - 000224959 _____ C:\Users\Dam\Downloads\Královký-pergamen-královká-listina-pracovní-list.pdf
2020-04-22 14:41 - 2020-04-22 14:41 - 003793435 _____ C:\Users\Dam\Downloads\Pracovni_listy_3_rocnik_w.pdf
2020-04-22 14:39 - 2020-04-22 14:39 - 001567027 _____ C:\Users\Dam\Downloads\Královký-pergamen-metodika.pdf
2020-04-22 14:39 - 2020-04-22 14:39 - 000998939 _____ C:\Users\Dam\Downloads\skritek-a-koronaviry.pdf
2020-04-22 14:38 - 2020-04-22 14:38 - 000141312 _____ C:\Users\Dam\Downloads\omalovanka_eda.pdf
2020-04-22 14:37 - 2020-04-22 14:37 - 000340334 _____ C:\Users\Dam\Downloads\omalovanka_rousky.pdf
2020-04-22 14:35 - 2020-04-22 14:35 - 000215516 _____ C:\Users\Dam\Downloads\den-zeme.pdf
2020-04-22 14:18 - 2020-04-23 18:51 - 000500960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-04-22 14:18 - 2020-04-22 14:17 - 000337048 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-04-22 14:18 - 2020-04-22 14:17 - 000235696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-04-22 14:18 - 2020-04-22 14:17 - 000175920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-04-22 14:11 - 2020-04-23 18:52 - 000000000 ____D C:\Users\Dam\Desktop\družina materiály

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-09 20:01 - 2014-12-24 21:10 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2704009275-1282577100-1869883960-1001
2020-05-09 17:55 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2020-05-09 15:30 - 2019-11-27 11:04 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-09 15:30 - 2018-04-06 11:18 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-09 15:30 - 2018-04-06 11:18 - 000002410 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-09 15:30 - 2018-04-06 11:18 - 000002410 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-09 15:08 - 2014-12-25 18:35 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-09 15:08 - 2014-12-25 18:35 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-09 15:08 - 2014-12-25 18:35 - 000002207 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-09 15:00 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2020-05-09 14:00 - 2014-12-25 22:03 - 000000000 ____D C:\Program Files (x86)\Opera
2020-05-09 13:58 - 2014-12-25 18:31 - 000000000 ____D C:\ProgramData\AVAST Software
2020-05-09 13:48 - 2014-04-26 05:51 - 000736058 _____ C:\Windows\system32\perfh005.dat
2020-05-09 13:48 - 2014-04-26 05:51 - 000149670 _____ C:\Windows\system32\perfc005.dat
2020-05-09 13:48 - 2014-03-18 11:47 - 001739092 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-09 13:48 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-05-09 13:46 - 2018-12-15 21:06 - 000000000 ___RD C:\Users\Dam\iCloudDrive
2020-05-09 13:41 - 2019-01-10 11:45 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-09 13:41 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-09 13:39 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2020-05-09 13:38 - 2019-12-30 21:30 - 000000492 _____ C:\Windows\system32\.tmp
2020-05-09 13:35 - 2019-09-27 08:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-09 13:30 - 2014-12-24 21:03 - 000000000 ____D C:\Users\Dam
2020-05-09 13:28 - 2014-04-26 06:01 - 000000000 ____D C:\Program Files\Acer
2020-05-09 13:28 - 2014-04-07 05:55 - 000000000 ____D C:\Program Files (x86)\Acer
2020-05-09 13:22 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-09 13:22 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2020-05-09 13:15 - 2015-06-06 11:53 - 000000000 ____D C:\AdwCleaner
2020-04-27 12:01 - 2014-12-24 22:00 - 000000000 ____D C:\Users\Dam\AppData\Local\CrashDumps
2020-04-27 11:18 - 2018-02-01 14:54 - 000000000 _____ C:\Windows\system32\last.dump
2020-04-24 17:36 - 2015-12-04 09:36 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-04-24 17:36 - 2015-05-20 07:32 - 000003110 _____ C:\Windows\system32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1}
2020-04-24 17:36 - 2014-04-26 05:45 - 000003016 _____ C:\Windows\system32\Tasks\UMonitor Task
2020-04-24 17:35 - 2015-10-08 15:32 - 000003746 _____ C:\Windows\system32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d
2020-04-24 17:35 - 2015-10-08 15:32 - 000003500 _____ C:\Windows\system32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon
2020-04-24 17:35 - 2015-07-29 08:14 - 000003440 _____ C:\Windows\system32\Tasks\BacKGroundAgent
2020-04-24 17:35 - 2015-05-20 07:15 - 000002784 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-24 17:35 - 2015-02-25 09:33 - 000003718 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2020-04-24 17:35 - 2015-02-25 09:33 - 000003476 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2020-04-24 17:35 - 2014-12-25 22:04 - 000003844 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1419537834
2020-04-24 17:35 - 2014-12-25 18:34 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-24 17:35 - 2014-12-25 18:34 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-24 17:35 - 2014-04-26 06:07 - 000002904 _____ C:\Windows\system32\Tasks\Launch Manager
2020-04-24 16:38 - 2014-12-26 17:36 - 000000000 ____D C:\Windows\system32\MRT
2020-04-24 16:17 - 2015-06-19 12:25 - 000001090 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-04-24 16:17 - 2015-06-19 12:25 - 000001090 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-04-24 16:12 - 2014-12-26 17:36 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-04-24 16:00 - 2014-12-25 17:51 - 000000000 ____D C:\Users\Dam\AppData\Roaming\Skype
2020-04-24 15:59 - 2016-03-05 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-24 15:58 - 2016-03-05 12:42 - 000099192 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2020-04-24 15:54 - 2016-03-05 12:41 - 000000000 ____D C:\Program Files (x86)\Java
2020-04-24 15:49 - 2017-03-16 21:04 - 000000000 ___RD C:\Program Files (x86)\Skype
2020-04-24 15:49 - 2014-12-25 13:48 - 000000000 ____D C:\ProgramData\Skype
2020-04-24 15:42 - 2014-12-25 21:58 - 000001128 _____ C:\Users\Public\Desktop\WinRAR.lnk
2020-04-24 15:42 - 2014-12-25 21:58 - 000001128 _____ C:\ProgramData\Desktop\WinRAR.lnk
2020-04-24 15:42 - 2014-12-25 21:58 - 000000000 ____D C:\Users\Dam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-24 15:42 - 2014-12-25 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-24 15:41 - 2014-12-25 21:58 - 000000000 ____D C:\Program Files\WinRAR
2020-04-24 15:18 - 2015-05-20 07:14 - 000000000 ____D C:\Program Files\CCleaner
2020-04-24 15:17 - 2015-05-20 07:15 - 000000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-04-24 15:17 - 2015-05-20 07:15 - 000000838 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-04-23 18:51 - 2014-12-25 18:34 - 000459408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-04-22 15:47 - 2019-02-20 10:43 - 000000000 ____D C:\Users\Dam\Documents\družina
2020-04-22 15:47 - 2018-10-15 20:48 - 000000000 ____D C:\Users\Dam\Documents\ESJ Projekt
2020-04-22 14:27 - 2016-10-05 15:32 - 000000000 ____D C:\Users\Dam\Documents\školka materiály
2020-04-22 14:17 - 2018-10-23 07:15 - 000042984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000317280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000109480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-04-22 14:17 - 2014-12-25 18:34 - 000085056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-04-22 14:16 - 2019-01-23 19:17 - 000234776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000178968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000060696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-04-22 14:16 - 2019-01-22 09:12 - 000037856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-04-22 14:16 - 2017-11-22 13:44 - 000206120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-04-22 14:16 - 2014-12-25 18:34 - 000851808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

==================== Files in the root of some directories ========

2020-03-31 20:52 - 2020-03-31 20:52 - 000000000 _____ () C:\Users\Dam\AppData\Local\{0971587E-F57F-4196-BB22-087ECB708F82}
2020-03-31 20:51 - 2020-03-31 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{3883EC21-54D0-4795-A6EC-D0BB90EA2BE8}
2020-03-31 20:52 - 2020-03-31 20:52 - 000000000 _____ () C:\Users\Dam\AppData\Local\{6A6F3516-2ED9-4698-85D1-68A720828AEB}
2019-03-13 17:43 - 2019-03-13 17:43 - 000000153 _____ () C:\Users\Dam\AppData\Local\{71C39BFD-6F8B-476D-8880-6AEBA1828069}
2020-03-31 20:51 - 2020-03-31 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{86D624E9-7238-4CB7-8293-1D40D2A50CCE}
2020-02-05 20:51 - 2020-02-05 20:51 - 000000000 _____ () C:\Users\Dam\AppData\Local\{981FCE0E-9E7B-413B-89F0-930BF50D6D2F}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-05-09 15:33
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-05-2020
Ran by Dam (09-05-2020 20:15:20)
Running from C:\Users\Dam\Downloads
Windows 8.1 Connected (Update) (X64) (2014-12-24 19:02:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2704009275-1282577100-1869883960-500 - Administrator - Disabled)
Dam (S-1-5-21-2704009275-1282577100-1869883960-1001 - Administrator - Enabled) => C:\Users\Dam
Guest (S-1-5-21-2704009275-1282577100-1869883960-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8105 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8106 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.2003 - Acer Incorporated)
Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2001.4 - Acer Incorporated)
Adobe Reader XI (11.0.11) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Aloha TriPeaks (HKLM-x32\...\WTA-87238713-ae3b-4f3e-a369-ea2f1a129b04) (Version: 2.2.0.98 - WildTangent) Hidden
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.2.2401 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 81.0.4053.113 - Autoři prohlížeče Avast Secure Browser)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Cradle Of Egypt Collector's Edition (HKLM-x32\...\WTA-560785d3-ad0d-494c-b6f9-d421bceb3976) (Version: 2.2.0.110 - WildTangent) Hidden
CwdStudio 1.1.1 (HKLM-x32\...\CwdStudio_is1) (Version: - ITPro CZ)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.1.0 - Genesys Logic)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.46.5308 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-7d5a510d-3b7b-4af4-aca5-07d24920dc4f) (Version: 2.2.0.110 - WildTangent) Hidden
GTKRawGallery verze 0.9.9 (HKLM-x32\...\{E70E8DF1-BE6E-4701-BDA3-09241667D719}_is1) (Version: 0.9.9 - Daniele Isca)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP PageWide Pro 477dn MFP Nápověda (HKLM-x32\...\{894C4A51-92D4-41A1-A115-25594B048ADB}) (Version: 44.0.0 - HP)
I.R.I.S. OCR (HKLM-x32\...\{831BBAED-4E5B-4375-AC5F-285B76FB90D6}) (Version: 12.3.6.12 - HP)
iCloud (HKLM\...\{28ABC5D7-AF47-4476-A6AA-C2DD822ED40F}) (Version: 7.9.0.9 - Apple Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.10.0.2208 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Technology Access (HKLM-x32\...\{810dff4d-564d-47da-b8bc-a3729815aab7}) (Version: 1.9.1.1008 - Intel Corporation)
Intel(R) Technology Access Software Asset Manager (HKLM-x32\...\{C1C74874-4E6F-49B8-BBCD-D43E277D8D28}) (Version: 3.4.1942 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Luxor Evolved (HKLM-x32\...\WTA-04a2636c-c605-4a6b-acce-30aaba900c3a) (Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (HKLM-x32\...\WTA-fc8a4e67-26f9-4946-970a-bc1da1314604) (Version: 2.2.0.98 - WildTangent) Hidden
Manager (HKLM-x32\...\{218A9668-3355-48AA-BFE5-6957CA4A5A4C}) (Version: 5.0.22.32425 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Opera Stable 65.0.3467.78 (HKLM-x32\...\Opera 65.0.3467.78) (Version: 65.0.3467.78 - Opera Software)
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{7A5C9B23-00FB-479B-9240-8DCBD3CDF7DC}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{422024FF-15CA-4199-8DAF-DD34A8BA85DD}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{AD72FB9B-80C6-461D-B099-9DD76A62115E}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.2 - pdfforge GmbH)
Peggle Nights (HKLM-x32\...\WTA-91017e2e-5d80-4c50-937d-12aded278c14) (Version: 2.2.0.98 - WildTangent) Hidden
PhotoshopRecovery (HKLM-x32\...\PhotoshopRecovery) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-c580f914-bb85-4474-b264-8694fe0a91d4) (Version: 2.2.0.98 - WildTangent) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{80B42CAA-28C0-4FBD-A46E-D61F45E2F9FC}) (Version: 7.2 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{466D00D0-E7DE-47C2-8FE5-54A8009F5850}) (Version: 7.2 - Apple Inc.)
Prohlížeč Seznam.cz (HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.25 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7203 - Realtek Semiconductor Corp.)
Shape Collage (HKLM-x32\...\ShapeCollage) (Version: - Shape Collage Inc.)
Skype verze 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.3399 - TeamViewer)
The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-ca615a20-e040-496c-b7ab-75ca0baf958e) (Version: 3.0.2.32 - WildTangent) Hidden
Trinklit Supreme (HKLM-x32\...\WTA-7b10457f-bcce-408a-b3e2-f98b4f4207ab) (Version: 2.2.0.98 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Základní software zařízení HP PageWide Pro 477dw MFP (HKLM\...\{66FD1331-D3CC-4119-B536-5CD4479410D8}) (Version: 38.7.1936.1881 - HP Inc.)
Zoo Tycoon 2 Trial Version (HKLM-x32\...\Zoo Tycoon 2 Trial Version) (Version: 1.0 - Microsoft)
ZyWALL SecuExtender (HKLM-x32\...\{82AC941C-39BC-448D-89AF-9D65CC7E8167}) (Version: 4.0.2.0 - Zyxel Communications Corp.)

Packages:
=========
- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2015-06-27] (WildTangent Games)
AccuWeather for Windows 8 -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_4.1.0.31_x64__8zz2pj9h1h1d8 [2016-08-05] (AccuWeather)
Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4 [2014-12-26] (Acer Incorporated)
Booking.com Partner Edition -> C:\Program Files\WindowsApps\4AE8B7C2.Booking.comPartnerEdition_1.2.1.0_x64__6wqyppa9wfhnr [2014-04-26] (Booking.com B.V.)
eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2014-12-26] (eBay, Inc)
Evernote Touch -> C:\Program Files\WindowsApps\Evernote.Evernote_3.3.0.102_x86__q4d96b2w5wcc2 [2016-01-21] (Evernote)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-14] (Microsoft Corporation) [MS Ad]
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.11.1807.1002_x86__8wekyb3d8bbwe [2018-07-31] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-23] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Taptiles -> C:\Program Files\WindowsApps\Microsoft.Taptiles_2.6.288.0_x86__8wekyb3d8bbwe [2018-10-30] (Microsoft Studios) [MS Ad]
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_1.1.0.0_neutral__6bhtb546zcxnj [2014-04-26] (TuneIn)
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-06] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-12-26] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> No File
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-02-10] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-01-31] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-12-03] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ShellContextExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2013-12-24 11:22 - 2013-12-24 11:22 - 000011264 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2015-07-07 11:44 - 2015-07-07 11:44 - 000088064 _____ () [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\libglog.dll
2015-02-08 11:53 - 2015-02-08 11:53 - 000501248 _____ (iMatix Corporation) [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\libzmq-v120-mt-3_2_4.dll
2015-02-08 12:20 - 2015-02-08 12:20 - 000111840 _____ (Intel(R) Technology Access -> NT Kernel Resources) [File not signed] C:\Program Files\Intel Corporation\Intel(R) Technology Access\ndisapi.dll
2017-05-01 13:42 - 2017-05-01 13:42 - 000116224 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000107648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000033408 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\CommApi.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000203392 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\FolderViewImpl.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000085632 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\GattI.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000126592 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\gatts.DLL
2013-12-24 11:27 - 2013-12-24 11:27 - 000083072 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Handsfree.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000034432 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ipc.dll
2013-12-24 11:27 - 2013-12-24 11:27 - 000063104 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ModuleManager.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 001067648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\OutLookLib.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000291456 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ShellContextExt.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000027264 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\TCPConnection.dll
2013-12-24 11:28 - 2013-12-24 11:28 - 000115328 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\utils.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\LE\LE.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000210944 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BIP\BIP.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\DID\DId.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FAX\Fax.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000421888 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2013-12-24 11:18 - 2013-12-24 11:18 - 000097792 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\goep\goep.dll
2013-12-24 11:20 - 2013-12-24 11:20 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000142848 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HealthDevice\HDP.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\pbap\pbap.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\sap\sap.dll
2013-12-24 11:22 - 2013-12-24 11:22 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\spp\spp.dll
2013-12-24 11:21 - 2013-12-24 11:21 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Sync\Sync.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-01-10 12:01 - 2019-01-10 12:01 - 000000076 _____ C:\Windows\system32\drivers\etc\hosts
192.168.105.222 server-eling

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Acer\Remote Files\;C:\Program Files (x86)\Common Files\Apple\Internet Services\
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dam\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

Network Binding:
=============
Síť Ethernet: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)
Připojení k mís. síti: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)
Wi-Fi: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "vProt"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "HP PageWide Pro 477dw MFP (NET)"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\StartupApproved\Run: => "ApplePhotoStreams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{527C2BE1-18A5-46FF-96E9-DF246DFC2C3C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [UDP Query User{E34DAE35-9BFC-43CC-AF69-96FD0B66F243}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [{716C30C1-88B9-42B7-95D9-1F6381CF318F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{7750DE31-4A58-4F15-9B72-809FA21649CA}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{EE391FDB-F01E-4DCB-9D68-F017F72C18F2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{083DF4CA-0933-4B03-9620-A35B1205DEFC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{7CC47DBB-2405-494E-B88B-D23EAAA8D7A5}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{9C298603-607A-4B1B-B691-0F8D5233E886}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{E1EE35F3-9A81-41E7-8F02-07359B810680}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2 Trial Version\zt2demoretail.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{038EFCA7-BE71-4AAD-B904-51BD4F452521}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2 Trial Version\zt2demoretail.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{4E67FEB7-319E-410B-8333-A0391B241FBC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4415AB91-112E-442B-8113-753EEEE87D78}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EB7BB98E-8813-4FFE-916B-3462248B3F46}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{69C0BA6D-B912-4E50-AFFD-01047FC82122}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{72530469-A844-42A7-BF3A-5A7353B9978B}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{767B79FE-BD1F-4ED3-B2AC-573626EE0C6F}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F41F75A4-4DF6-4D18-BCD0-7E5FD8123726}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2ABA18C0-4BE6-4D9A-9D93-61A39A8C3455}] => (Allow) LPort=5357
FirewallRules: [{6062D18A-228F-4822-9E60-F51448543FD5}] => (Allow) C:\Program Files\HP\HP PageWide Pro 477dw MFP\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2CBE449D-EDD1-40A8-B2E7-49570400F5AA}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F8D67B3F-D541-45B0-8BB0-52588D3F2CA2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6E0B2407-6D27-482D-B8EC-3E9B12FC097C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2D0E4857-55F9-42CA-8D40-3AC735111C99}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ED9BC065-87E9-451C-ADA1-B55E1D3B1BE1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{005963BC-CA2A-4193-9CEA-5F9DDBB159D8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C157490C-E58B-4439-A136-090D02FA79FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C304AC21-9223-4F11-8637-B5FC43D46606}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{98CF44FA-A6EC-428F-832B-AD95229D9FA3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{13D115C2-A071-433C-A220-8F03CCC08133}] => (Allow) C:\Program Files (x86)\Opera\65.0.3467.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{8721AA55-5461-4253-B580-9689A3E0E49D}] => (Allow) C:\Program Files (x86)\Opera\65.0.3467.78\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{FBDC0310-C354-4970-924C-9A06F2433047}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C84FD19E-90F4-492F-94F2-FB7DE652703B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3E14FFA4-E5EB-418B-9441-6024B9504E21}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{86CFD568-166A-4924-A491-EEE08B43C1E3}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

24-04-2020 16:05:42 Windows Update
30-04-2020 09:11:04 Windows Update
09-05-2020 13:18:02 AdwCleaner_BeforeCleaning_09/05/2020_13:17:43

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/09/2020 07:54:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program mbamtray.exe verze 4.0.0.638 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 11a8

Čas spuštění: 01d625f717cccc49

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

ID hlášení: 0b5e5564-921e-11ea-8328-c454444dded5

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (05/09/2020 07:20:49 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/09/2020 06:20:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/09/2020 05:27:33 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/09/2020 04:20:55 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/09/2020 03:21:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/09/2020 02:33:01 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (05/09/2020 02:21:08 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhostex (4436) Pokus o otevření souboru C:\Users\Dam\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (05/09/2020 04:49:41 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0831): 2020-04, měsíční kumulativní aktualizace zabezpečení pro zvýšení kvality pro Windows 8.1 pro systémy s procesorem x64 (KB4550961).

Error: (05/09/2020 04:38:13 PM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/09/2020 04:37:42 PM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/09/2020 03:47:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0831): 2020-04, měsíční kumulativní aktualizace zabezpečení pro zvýšení kvality pro Windows 8.1 pro systémy s procesorem x64 (KB4550961).

Error: (05/09/2020 03:33:30 PM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/09/2020 03:33:18 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a42\SystemRoot\System32\Config\RegBack\SYSTEM

Error: (05/09/2020 03:33:15 PM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/09/2020 02:32:31 PM) (Source: DCOM) (EventID: 10010) (User: JANICKA)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2016-09-17 10:47:56.715
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {53B05FD1-6D33-49A7-8E25-143A2CDA5DFA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2015-07-29 22:02:24.696
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {FA56D9B9-A441-4C24-9E18-1D519F92CE5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2016-09-17 10:06:00.553
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.203.1046.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.11903.0
Kód chyby: 0x80070643
Popis chyby :Při instalaci došlo k závažné chybě.

Date: 2015-07-29 19:08:54.474
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.163.1568.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.10100.0
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2015-07-29 19:08:54.462
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.163.1568.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.10100.0
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2018-03-26 19:33:40.281
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:36.187
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:33.604
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:29.690
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:26.595
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:23.684
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:20.690
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-03-26 19:33:16.134
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.05 04/11/2014
Motherboard: Acer Roxy
Processor: Intel(R) Celeron(R) CPU N2830 @ 2.16GHz
Percentage of memory in use: 86%
Total physical RAM: 1930.2 MB
Available physical RAM: 261.13 MB
Total Virtual: 4106.2 MB
Available Virtual: 1472.14 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:449.26 GB) (Free:192.87 GB) NTFS

\\?\Volume{b6ea7126-82dd-4414-96dc-f52c047df6a3}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.31 GB) NTFS
\\?\Volume{c0b7a1b4-6491-45eb-8a76-3ad9a652a69f}\ (Push Button Reset) (Fixed) (Total:15.5 GB) (Free:2.03 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B10EA505)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: prosím o kontrolu logu - netbook

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {2a8cedeb-3c5d-11e6-82a8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {5343a348-c7b1-11e8-82f8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {3F7E0AB1-11AF-410E-972A-F4CFA855F281} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {F90774E9-4104-45C6-9308-4FF367F77995} - System32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {9D6BFB22-463B-434B-B0BF-D70F870983F7} URL =
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Dam\AppData\Local\{0971587E-F57F-4196-BB22-087ECB708F82}
C:\Users\Dam\AppData\Local\{3883EC21-54D0-4795-A6EC-D0BB90EA2BE8}
C:\Users\Dam\AppData\Local\{6A6F3516-2ED9-4698-85D1-68A720828AEB}
C:\Users\Dam\AppData\Local\{71C39BFD-6F8B-476D-8880-6AEBA1828069}
C:\Users\Dam\AppData\Local\{86D624E9-7238-4CB7-8293-1D40D2A50CCE}
C:\Users\Dam\AppData\Local\{981FCE0E-9E7B-413B-89F0-930BF50D6D2F}
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> No File
FirewallRules: [TCP Query User{527C2BE1-18A5-46FF-96E9-DF246DFC2C3C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [UDP Query User{E34DAE35-9BFC-43CC-AF69-96FD0B66F243}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File

EmptyTemp:
End
Uložte do C:\Users\Dam\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

neummi
Návštěvník
Návštěvník
Příspěvky: 91
Registrován: 25 lis 2007 12:55

Re: prosím o kontrolu logu - netbook

#7 Příspěvek od neummi »

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-05-2020
Ran by Dam (09-05-2020 21:03:02) Run:1
Running from C:\Users\Dam\Downloads
Loaded Profiles: Dam (Available Profiles: Dam)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {2a8cedeb-3c5d-11e6-82a8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\...\MountPoints2: {5343a348-c7b1-11e8-82f8-c454444dded5} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {3F7E0AB1-11AF-410E-972A-F4CFA855F281} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {F90774E9-4104-45C6-9308-4FF367F77995} - System32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-2704009275-1282577100-1869883960-1001 -> {9D6BFB22-463B-434B-B0BF-D70F870983F7} URL =
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Dam\AppData\Local\{0971587E-F57F-4196-BB22-087ECB708F82}
C:\Users\Dam\AppData\Local\{3883EC21-54D0-4795-A6EC-D0BB90EA2BE8}
C:\Users\Dam\AppData\Local\{6A6F3516-2ED9-4698-85D1-68A720828AEB}
C:\Users\Dam\AppData\Local\{71C39BFD-6F8B-476D-8880-6AEBA1828069}
C:\Users\Dam\AppData\Local\{86D624E9-7238-4CB7-8293-1D40D2A50CCE}
C:\Users\Dam\AppData\Local\{981FCE0E-9E7B-413B-89F0-930BF50D6D2F}
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> No File
FirewallRules: [TCP Query User{527C2BE1-18A5-46FF-96E9-DF246DFC2C3C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [UDP Query User{E34DAE35-9BFC-43CC-AF69-96FD0B66F243}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2a8cedeb-3c5d-11e6-82a8-c454444dded5} => removed successfully
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5343a348-c7b1-11e8-82f8-c454444dded5} => removed successfully
"HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F7E0AB1-11AF-410E-972A-F4CFA855F281}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F7E0AB1-11AF-410E-972A-F4CFA855F281}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F90774E9-4104-45C6-9308-4FF367F77995}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F90774E9-4104-45C6-9308-4FF367F77995}" => removed successfully
C:\Windows\System32\Tasks\{ECE4702C-D066-4205-809D-5EBE468214F1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ECE4702C-D066-4205-809D-5EBE468214F1}" => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2704009275-1282577100-1869883960-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9D6BFB22-463B-434B-B0BF-D70F870983F7} => removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Users\Dam\AppData\Local\{0971587E-F57F-4196-BB22-087ECB708F82} => moved successfully
C:\Users\Dam\AppData\Local\{3883EC21-54D0-4795-A6EC-D0BB90EA2BE8} => moved successfully
C:\Users\Dam\AppData\Local\{6A6F3516-2ED9-4698-85D1-68A720828AEB} => moved successfully
C:\Users\Dam\AppData\Local\{71C39BFD-6F8B-476D-8880-6AEBA1828069} => moved successfully
C:\Users\Dam\AppData\Local\{86D624E9-7238-4CB7-8293-1D40D2A50CCE} => moved successfully
C:\Users\Dam\AppData\Local\{981FCE0E-9E7B-413B-89F0-930BF50D6D2F} => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ACloudSynced => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{527C2BE1-18A5-46FF-96E9-DF246DFC2C3C}C:\program files (x86)\skype\phone\skype.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E34DAE35-9BFC-43CC-AF69-96FD0B66F243}C:\program files (x86)\skype\phone\skype.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 52742905 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1735766736 B
Edge => 0 B
Chrome => 424407250 B
Firefox => 0 B
Opera => 833904 B

Temp, IE cache, history, cookies, recent:
Default => 6932 B
Users => 6932 B
ProgramData => 6932 B
Public => 6932 B
systemprofile => 7060 B
systemprofile32 => 7188 B
LocalService => 72976 B
NetworkService => 72976 B
Dam => 207368070 B

RecycleBin => 0 B
EmptyTemp: => 2.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:05:18 ====

netbook viditelně ožil...skvělá práce :) :worship:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: prosím o kontrolu logu - netbook

#8 Příspěvek od Rudy »

OK. Žádný jiný problém nemáte?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

neummi
Návštěvník
Návštěvník
Příspěvky: 91
Registrován: 25 lis 2007 12:55

Re: prosím o kontrolu logu - netbook

#9 Příspěvek od neummi »

Nic jiného mě nenapadá... Vzhledem ke stáří netbooku a jeho parametrům jsme již pravděpodobně narazili na jeho limity ve výkonu :D :) ještě jednou díky za rychlou pomoc s oživením :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: prosím o kontrolu logu - netbook

#10 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno