Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

zpomalené PC a nefunguje domací sít a myš

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Pavouk1
Návštěvník
Návštěvník
Příspěvky: 148
Registrován: 15 pro 2012 10:14

zpomalené PC a nefunguje domací sít a myš

#1 Příspěvek od Pavouk1 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2020
Ran by matus (administrator) on DESKTOP-QCNA7PB (HP HP Pavilion Notebook) (09-11-2020 18:08:07)
Running from C:\Users\matus\Downloads
Loaded Profiles: matus
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
() [File not signed] C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(AVerMedia TECHNOLOGIES, Inc -> ) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe
(AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Elgato Systems -> Elgato Systems GmbH) C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\matus\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Power Technology -> ) [File not signed] C:\Program Files (x86)\DFX\DFX.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe <3>
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync-inotify.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET Security\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1325240 2018-11-20] (Power Technology -> ) [File not signed]
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376504 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [24720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [223096 2012-04-17] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2311840 2020-03-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [BDFE749FBD481E3AA828287100E5863D96D31C94._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [752736 2012-10-08] (ZONER software, a.s. -> ZONER software)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\Installer\chrmstp.exe [2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2020-11-09]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2019-04-27]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe (AVerMedia TECHNOLOGIES, Inc -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2019-04-27]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration THE SETTLERS - Heritage of Kings.LNK [2019-11-08]
ShortcutTarget: Registration THE SETTLERS - Heritage of Kings.LNK -> D:\Support\Register\RegistrationReminder.exe (No File)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2018-07-07]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {043EC152-057C-41EA-AC3D-CC68A32EAB7E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {26C902A8-54AC-49D8-BA98-43F84C0C7B28} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2C612CDB-093E-483F-BDA3-F303DDB00390} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D72E9B4-2067-416E-9C20-AE7C8B36A708} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5251680 2020-09-04] (Avast Software s.r.o. -> Avast Software)
Task: {33E53BDC-E52F-48D2-B9C1-6B56466053C1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {41DA5234-338C-4317-80DE-CE806381A426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {57A13B4C-ADF3-45B3-B871-37DED4DD25D2} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {5E231D9E-2E69-4DFC-8B2C-D691F6643B4B} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [1174936 2019-07-30] (Greatis Software LLC -> Greatis Software)
Task: {634C520A-AAC7-4723-9AA0-570522160B23} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {69355DF0-512F-4D85-AF2A-170C3B891E5E} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [5524040 2019-03-08] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {6B385918-808A-4134-B76B-772CB00432B0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D6A7D55-E421-4652-925C-BF832FB65AB9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {70017988-FBA3-4AF1-A45B-A86EBE108EB8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4496488 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
Task: {89A994EB-F369-489F-AB1B-35E07019F0B3} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [3551704 2020-11-09] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid f2dc0f90-4b55-46ce-ad2c-a0e0717dbe08
Task: {8E0463AB-6520-4706-801B-8D230C4FE109} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1146776 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DD69C06-47E4-4612-8CA1-DF3FB6A17C2A} - System32\Tasks\ASC12_SkipUac_matus => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {B80E7929-DC58-4B00-8337-F3797051FFA2} - System32\Tasks\WD Device Agent Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720632 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {C5867709-05FE-439A-801E-1E4F80419A9B} - System32\Tasks\WD Discovery Service Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75512 2020-03-29] (Western Digital Technologies, Inc. -> )
Task: {D2EFBC94-C2C3-432E-98D8-27F52A22B7C2} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1180488 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Task: {D433A34A-13B3-4743-A9E7-A946113327CB} - System32\Tasks\Zoner.Updater.S-1-5-21-618738485-2318971794-796116561-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [2693712 2020-11-09] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {F062C002-C0DF-47E8-8666-622BAB897FFA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6F22C70-8C0D-4F2A-861C-DA299649F4F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {FF946805-AF91-4307-8A05-08C520CD4C44} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0a108eec-fd3e-4a94-8677-90324982d730}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1193c1da-f4e5-4664-a9a4-23db8fe0718a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3e1f071f-7bfe-4622-b640-ebeae25eee8c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{93d62c76-7eed-4d4c-bfe4-f830274b5da6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{ef08dffa-d039-4b3f-b6c2-b19329588074}: [NameServer] 100.124.96.1

Edge:
======
DownloadDir: C:\Users\matus\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\matus\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default [2020-11-09]
CHR Notifications: Default -> hxxps://apkpure.ai; hxxps://en.softonic.com; hxxps://eu1.badoo.com; hxxps://gadgets.ndtv.com; hxxps://www.facebook.com; hxxps://www.svetandroida.cz
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR Extension: (Seznam doplněk - Email) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-04-14]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-14]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8450976 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [360408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1187512 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2748520 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\elevation_service.exe [1348304 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [377664 2015-06-25] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [771072 2017-02-06] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 D-Link SharePort Plus Helper; C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe [49152 2011-03-25] () [File not signed]
R2 EyeTV Netstream; C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe [400864 2013-04-15] (Elgato Systems -> Elgato Systems GmbH)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [7509152 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 StreamEngineService; C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe [1953712 2020-02-27] (AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [367232 2019-06-26] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-11-09] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59312 2020-11-09] (Avast Software s.r.o. -> Avast Software)
S3 AVerFx2hbtv64; C:\WINDOWS\system32\drivers\AVerFx2hbtv64.sys [691968 2012-09-19] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [871048 2016-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET, spol. s r.o. -> ESET)
S4 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [40304 2019-09-04] (Greatis Software LLC -> Greatis Software)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [82816 2018-07-26] (VSO Software) [File not signed]
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2013-08-14] (Corel Corporation -> Corel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R2 sxuptp; C:\WINDOWS\System32\drivers\sxuptp.sys [317792 2015-09-03] (D-LINK CORPORATION -> silex technology, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U1 aswbdisk; no ImagePath
U1 netfilter2; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-09 18:08 - 2020-11-09 18:09 - 000029790 _____ C:\Users\matus\Downloads\FRST.txt
2020-11-09 18:07 - 2020-11-09 18:08 - 000000000 ____D C:\FRST
2020-11-09 17:48 - 2020-11-09 17:48 - 000001227 _____ C:\Users\matus\Desktop\Ondřej's My Cloud Home.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002076 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2020-11-09 17:40 - 2020-11-09 17:41 - 002298368 _____ (Farbar) C:\Users\matus\Downloads\FRST64.exe
2020-11-09 17:23 - 2020-11-09 17:24 - 030460656 _____ (Piriform Software Ltd) C:\Users\matus\Downloads\ccsetup574.exe
2020-11-09 17:13 - 2020-11-09 17:13 - 000059312 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswVpnRdr.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000053904 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2020-11-09 17:13 - 2020-11-09 17:13 - 000002149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-11-09 17:13 - 000002137 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-09-04 15:03 - 000075368 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AvastAntiTrackPremium
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\677ae575af6a7e4acc48b411cb96dbac
2020-11-09 16:44 - 2020-10-18 10:50 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-11-09 16:34 - 2020-11-09 16:35 - 271423123 _____ C:\Users\matus\Downloads\Jak je důležité míti Filipa (TV film) - Komedie (Československo, 1979).mp4
2020-10-18 10:50 - 2020-10-18 10:50 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-18 10:50 - 2020-10-18 10:50 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-10-18 10:47 - 2020-10-18 10:50 - 000000000 ____D C:\Lednice valtice

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-09 18:05 - 2020-08-23 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-09 18:05 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-09 17:55 - 2017-08-13 16:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Users\matus\Documents\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Program Files\ShareX
2020-11-09 17:47 - 2019-07-15 10:38 - 000000000 ____D C:\Users\matus\AppData\Roaming\WD Discovery
2020-11-09 17:47 - 2019-07-15 10:37 - 000000000 ____D C:\Users\matus\.wdc
2020-11-09 17:46 - 2020-08-23 15:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-09 17:46 - 2020-08-23 15:22 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-09 17:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-09 17:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-09 17:14 - 2020-09-14 10:40 - 000000000 ____D C:\ProgramData\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-11-09 17:13 - 2020-09-14 10:41 - 000000000 ____D C:\Program Files\Avast Software
2020-11-09 16:53 - 2020-08-23 15:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-09 16:53 - 2019-12-07 15:41 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-09 16:53 - 2019-12-07 15:41 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-09 16:46 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-09 16:46 - 2017-08-13 15:50 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-11-09 16:45 - 2020-09-14 10:46 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:46 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:45 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-11-09 16:45 - 2020-08-23 15:25 - 000000000 ____D C:\Users\matus
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-09 16:44 - 2020-09-14 10:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-09 16:44 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-09 16:40 - 2020-09-29 11:20 - 000001604 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2020-11-09 16:40 - 2020-09-29 11:20 - 000001602 _____ C:\Users\matus\Desktop\Zoner Photo Studio X.lnk
2020-11-09 16:39 - 2017-08-13 16:32 - 000000000 ____D C:\ProgramData\Zoner
2020-11-09 16:38 - 2020-08-23 15:38 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-09 16:38 - 2020-08-23 15:38 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-09 16:36 - 2020-08-23 15:38 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-618738485-2318971794-796116561-1001
2020-11-09 16:36 - 2020-08-23 15:25 - 000002406 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 16:36 - 2017-08-13 15:48 - 000000000 ___RD C:\Users\matus\OneDrive
2020-11-09 16:32 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-18 10:50 - 2020-09-14 10:42 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-18 10:49 - 2020-08-23 15:38 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-18 10:49 - 2020-08-23 15:38 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories ========

2017-08-13 16:19 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\howto
2018-07-26 16:10 - 2019-05-12 10:29 - 000099384 _____ () C:\Users\matus\AppData\Roaming\inst.exe
2018-07-26 16:10 - 2019-05-12 10:29 - 000007859 _____ () C:\Users\matus\AppData\Roaming\pcouffin.cat
2018-07-26 16:10 - 2019-05-12 10:29 - 000001167 _____ () C:\Users\matus\AppData\Roaming\pcouffin.inf
2018-07-26 16:11 - 2019-05-12 10:29 - 000000055 _____ () C:\Users\matus\AppData\Roaming\pcouffin.log
2018-07-26 16:10 - 2019-05-12 10:29 - 000082816 _____ (VSO Software) C:\Users\matus\AppData\Roaming\pcouffin.sys
2020-08-23 17:28 - 2020-08-23 17:28 - 000000268 ___RH () C:\Users\matus\AppData\Roaming\User Pictures
2017-08-13 16:20 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\Widgets

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-11-2020
Ran by matus (09-11-2020 18:12:03)
Running from C:\Users\matus\Downloads
Windows 10 Home Version 2004 19041.508 (X64) (2020-08-23 14:38:35)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-618738485-2318971794-796116561-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-618738485-2318971794-796116561-503 - Limited - Disabled)
Guest (S-1-5-21-618738485-2318971794-796116561-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-618738485-2318971794-796116561-1003 - Limited - Enabled)
matus (S-1-5-21-618738485-2318971794-796116561-1001 - Administrator - Enabled) => C:\Users\matus
WDAGUtilityAccount (S-1-5-21-618738485-2318971794-796116561-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Ashampoo Video Converter (HKLM-x32\...\{91B33C97-EF1B-802C-7798-B0E0F58D0614}_is1) (Version: 1.0.2 - Ashampoo GmbH & Co. KG)
Ashampoo Video Optimizer Pro (HKLM\...\{0A11EA01-76FF-098D-1F55-38D65501534C}_is1) (Version: 1.0.4 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 17 (HKLM-x32\...\{4209F371-A288-7880-7A7F-D105477C7D11}_is1) (Version: 17.00.24 - Ashampoo GmbH & Co. KG)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 86.0.6531.112 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.7.5118.836 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
AvastAntiTrackPremium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 1.7.0.115 - Avast)
AVer MediaCenter 3D (HKLM-x32\...\{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.) Hidden
AVer MediaCenter 3D (HKLM-x32\...\InstallShield_{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.)
AVerMedia A827 USB TV Tuner 2.1.64.159 (HKLM-x32\...\AVerMedia A827 USB TV Tuner) (Version: 2.1.64.159 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia C039 USB Capture Card 10.2.64.103 (HKLM-x32\...\AVerMedia C039 USB Capture Card) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia Engine (HKLM-x32\...\{b7cfb71d-8a81-4ac3-bdcd-16df998e853b}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc)
AVerMedia H837 USB Hybrid ATSC/QAM 10.2.64.103 (HKLM-x32\...\AVerMedia H837 USB Hybrid ATSC/QAM) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia StreamEngine 2 Installer (HKLM-x32\...\{3C6C18D9-2977-4845-803E-E31B3B7964FC}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.)
Camera Control Pro 2 (HKLM\...\{C00C5AEF-85D0-4418-B1B1-EC6DDE1E2EB8}) (Version: 2.32.0 - Nikon Corporation)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.10.4.24 - Canon Inc.)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2023 - CyberLink Corp.) Hidden
CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.1927.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DFX (HKLM-x32\...\DFX) (Version: 12.011.0.0 - Power Technology)
Driver Install 64bit (HKLM-x32\...\{1AF7F543-C862-4FD7-A6C1-FB527D2A2D91}) (Version: 1.32.1146.0 - 6?Shenzhen Geniatech Inc.,Ltd)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DxO FilmPack 3 (HKLM\...\{6E98BFB0-55E3-4D3C-8C10-B44F6063535E}) (Version: 3.4.96.0 - DxO Labs)
DxO PhotoLab 2 (HKLM\...\{DE14CE7D-2B71-41E0-8BE1-621DD49971FC}) (Version: 2.1.0 - DxO)
DxO PhotoLab 3 (HKLM\...\{7BBE0C3F-A19E-4D85-825B-88E5504623E5}) (Version: 3.3.0 - DxO)
EyeTV Netstream for Windows Media Center (HKLM-x32\...\EyeTV Netstream Service) (Version: 1.01.00.16 - Elgato Systems GmbH)
Formix SE - formuláře kanceláře (HKLM-x32\...\Formix SE_is1) (Version: - Martin Roubec)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HD Video Converter Factory Pro 18.1 (HKLM-x32\...\HD Video Converter Factory Pro) (Version: 18.1 - WonderFox Soft, Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
KaM Remake Full r6720 (HKLM-x32\...\{FDE049C8-E4B2-4EB5-A534-CF5C581F5D32}_is1) (Version: - )
K-Lite Mega Codec Pack 14.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.4.0 - KLCP)
Kodek 0.16 CZ (HKLM-x32\...\{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1) (Version: 0.16 - Pinky.cz)
Kuki (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Kuki) (Version: 20160616.000 - SMART Comp. a.s.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.13328.20292 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.38 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Movavi Video Converter 18 Premium verze Verzia 18 (HKLM-x32\...\{F20A5760-7FCB-4C99-8FA9-7594EA6EC500}_is1) (Version: Verzia 18 - My Company, Inc.)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Network Print Monitor for Windows (HKLM-x32\...\Network Print Monitor) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20292 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Ogg Vorbis ACM Codec (HKLM-x32\...\VorbisCodec) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC Štítky 2.xx (HKLM-x32\...\PC Štítky 2.xx_is1) (Version: - LAN Consult, spol. s r.o.)
Photo Story 3 pro Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.10 - Microsoft Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - Photodex Corporation)
ProShow Plugins for Lightroom (HKLM-x32\...\ProShow Plugins for Lightroom) (Version: - )
Puzznic 1.5 (HKLM-x32\...\Puzznic_is1) (Version: - ZX Games)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7730 - Realtek Semiconductor Corp.)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
SharePort Plus (HKLM\...\SharePort Plus) (Version: 4.5.0 R1 - D-Link Corporation)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.3.0 - ShareX Team)
Spectaculator 5.3 (HKLM-x32\...\{C8C61BA0-F07E-4240-B5B0-669988B3A51A}) (Version: 5.30.371 - spectaculator.com)
Spectaculator 8.0 (HKLM-x32\...\{B21AE9DA-E837-4F82-B061-7848B4F3096B}) (Version: 8.0.0.3092 - spectaculator.com)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
the Free Unix Spectrum Emulator (Fuse) 1.5.7 (HKLM-x32\...\Fuse) (Version: 1.5.7 - )
TMPGEnc Authoring Works 5 (HKLM-x32\...\{3B2A7C83-EFAE-4FC1-BF6B-500042E8B17A}) (Version: 5.0.8.26 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Premium Theme Pack 1 (HKLM-x32\...\{5D314FE3-3D51-4C46-9514-8B0A28F7AF77}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 1 (HKLM-x32\...\{929EAD99-9874-43BF-B3F4-5F5D2D9D66A9}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 2 (HKLM-x32\...\{5ECF915E-710A-441E-A7CB-1E599A61D34F}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 3 (HKLM-x32\...\{504C5775-4DD4-40A6-84EA-2837EBC5D268}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 4 (HKLM-x32\...\{081872FE-8932-42E9-B3CE-CE85C477790E}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Video Mastering Works 7 (HKLM\...\{39AF3318-F7FC-41E3-837E-51BF19AE5A77}) (Version: 7.0.16.18 - Pegasys Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
TotalTV Player (HKLM-x32\...\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}) (Version: 6.32.4 - )
UnHackMe GE 10.85 release (HKLM-x32\...\UnHackMe Giveaway Edition_is1) (Version: - Greatis Software, LLC.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.59 - VSO Software)
VSO DVD Converter Ultimate 4 (HKLM-x32\...\{{089D6334-329D-46DC-8DC3-6BF4C9735F0F}_is1) (Version: 4.0.0.92 - VSO Software)
WD Backup (HKLM-x32\...\{48af7dc3-edf5-448d-a533-e3f050b404b5}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc.)
WD Backup (HKLM-x32\...\{4EB2034E-AC6F-4A03-9448-C97E634A6E34}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc) Hidden
WD Desktop App 2.1.0.299 (HKLM-x32\...\{f79d30ca-d71c-4aaa-b9b0-b26833cdac51}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.299 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 3.7.214 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{693748a9-bddc-4f6f-b3ff-f9bd14a3fcc0}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{ED1E371E-F744-437B-95AD-9552E2BCE629}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.) Hidden
WD Security (HKLM-x32\...\{3add5d6a-ee06-4eba-aea0-cbd8eb1486d4}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{5E3EE4AF-4D3A-4A65-9E04-8F50E9A3AC76}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.) Hidden
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
Win10PrivacyFix (HKLM-x32\...\{EFF218A1-EBF1-4EE2-8BAE-86D0E04B4F0F}_is1) (Version: 2.6 - Abelssoft)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinUAE 64-bit 4.0.0 (HKLM\...\{3F3C6C30-B791-4DD5-ABEF-48F424366039}) (Version: 4.0.0.0 - Arabuusimiehet)
Wise Registry Cleaner 10.1.6 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.1.6 - WiseCleaner.com, Inc.)
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.2 - ZONER software)
Zoner Photo Studio X CS (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\ZPS X) (Version: 19.2009.2.279 - ZONER software)

Packages:
=========
Age of Empires: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSDallas_1.3.27374.2_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.178.200.0_x86__kgqvnymyfvs32 [2020-10-08] (king.com)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.23.1.0_x86__q7m17pa7q8kj0 [2020-09-29] (Deezer SA)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-23] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.4002.0_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-618738485-2318971794-796116561-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers1: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\system32\prodad-codec.dll [607256 2017-08-02] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [vidc.divx] => C:\Windows\SysWOW64\divx.dll [680960 2003-11-11] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.div4] => C:\Windows\SysWOW64\DivXc32f.dll [121920 2003-04-22] (Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.div3] => C:\Windows\SysWOW64\DivXc32.dll [121920 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvid.dll [202752 2003-07-16] () [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2003-07-29] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.divxa] => C:\Windows\SysWOW64\divxa32.acm [290896 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\Vorbis.acm [209408 2001-06-22] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [msacm.a3d] => C:\Windows\SysWOW64\a3d.dll [720896 2002-08-27] (Sensaura Ltd) [File not signed]
HKLM\...\Drivers32: [msacm.ogg] => C:\Windows\SysWOW64\ogg.dll [21504 2002-10-05] () [File not signed]
HKLM\...\Drivers32: [msacm.vorbisenc] => C:\Windows\SysWOW64\vorbisenc.dll [80384 2002-10-05] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-12-17 18:41 - 2018-12-17 18:41 - 000306688 _____ () [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceInfoParser.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000032768 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.NetFwTypeLib.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000014848 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.UPNPLib.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2019-05-08 00:06 - 2019-05-08 00:06 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2018-12-17 18:41 - 2018-12-17 18:41 - 000211456 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\AVerCaptureCardID.dll
2018-11-23 13:49 - 2018-11-23 13:49 - 002114048 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceMaster.dll
2019-04-24 15:19 - 2015-12-14 15:39 - 000194560 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\CardID.dll
2019-04-24 15:19 - 2015-02-09 12:32 - 000770048 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\GraphMaster.dll
2019-07-15 10:38 - 2017-11-10 11:51 - 000118272 _____ (Western Digital Technologies, Inc.) [File not signed] C:\WINDOWS\system32\wdfsconnectNetRdr2017.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:CD30FA91 [360]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-618738485-2318971794-796116561-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2020-11-09 16:36 - 000029154 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0x1f4b0.com
0.0.0.0 1q2w3.fun
0.0.0.0 1q2w3.life
0.0.0.0 1q2w3.website
0.0.0.0 2giga.dowload
0.0.0.0 2giga.link
0.0.0.0 8jd2lfsq.me
0.0.0.0 aalbbh84.info
0.0.0.0 acbp0020171456.page.tl
0.0.0.0 adless.io
0.0.0.0 ad-miner.com
0.0.0.0 adplusplus.fr
0.0.0.0 adrenali.gq
0.0.0.0 afflow.18-plus.net
0.0.0.0 afminer.com
0.0.0.0 ajcryptominer.com
0.0.0.0 ajplugins.com
0.0.0.0 akvideo.stream
0.0.0.0 allfontshere.press
0.0.0.0 altavista.ovh
0.0.0.0 amhixwqagiz.ru
0.0.0.0 analytics.blue
0.0.0.0 andlache.com
0.0.0.0 anime.reactor.cc
0.0.0.0 a-o.ninja
0.0.0.0 apdrive.win
0.0.0.0 api.inwemo.com
0.0.0.0 appelamule.com
0.0.0.0 arizona-miner.tk

There are 1142 more lines.


2017-09-06 18:49 - 2018-12-18 16:26 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-618738485-2318971794-796116561-1001\Control Panel\Desktop\\Wallpaper -> C:\P1000105.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{66386608-4583-415B-BE9B-2E3ED3C66393}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [UDP Query User{CD292CAC-6A20-4707-A1A6-7F40BBCBADFA}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [TCP Query User{9D0C9E9D-CD2A-4E28-A7EC-B10A7C51B32C}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [{AF41BABC-EB80-412E-9FF8-CD0ACFAD2276}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{B8D6DDE3-2B3A-4FA3-B8C4-5A52517A3BC8}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{74D8855E-CEC9-41AF-B10A-B432914E0066}] => (Allow) C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe (D-LINK CORPORATION -> D-Link Corp.)
FirewallRules: [TCP Query User{5CB81A67-5F66-4C27-A450-2A91C6881614}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [UDP Query User{3148B70F-8759-48BE-AF44-6D5CC79F934A}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [TCP Query User{D5CD366E-F688-4E82-B179-B0530BC21377}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [UDP Query User{EBDC1CCF-B409-4C2C-8A18-002EC0E7902B}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [{88AE1167-35CF-4A3C-B1A4-C809BEB2BE59}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00B7F292-9D74-46DC-AF0F-8C10C85A8925}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0550766C-8990-4F90-A228-C397A2B7EA83}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{1793B47C-65BE-4CC3-AED5-309D3104443E}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{6DAEF2CA-BEE8-477A-8D3A-140551442F50}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{7FD0398F-ED20-44FB-8A02-E2B88379831A}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{E155F248-A43A-42CE-937B-191572D3F090}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{4BB3EC4D-4963-4B2C-BE83-3513CE0DD584}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{7991E652-F01D-46F1-B3D0-AF0EE136AAC2}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [UDP Query User{E6A6F1CA-4FFA-4382-8416-1E98DCEAC80C}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{E98497D8-7CFA-4E7B-9BFD-4F040175494E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{286BE9AF-8B10-4369-96F6-655E54B571E4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777935}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA9}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777934}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA8}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{EB94C739-0A4D-459F-B4E9-16D4F0912782}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{8DD177E0-0791-49CC-81F8-414830CD3357}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9E8BD6B0-C150-49D4-8BFC-77B37038E5D7}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{2CC5F19F-5080-40A8-984E-F98E24BE11AA}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{4BADA533-C125-49C4-B0DC-54533D9610B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9029AF1F-5CD0-4D62-AA38-D3B5E433333B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{18122F01-3107-46BB-9818-F08382BD2351}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{295723E0-49CF-43E4-A046-A82DB69A5C0F}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AA9503E3-6E1D-49D6-9A02-20E0D7ADCF6D}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD0395D6-03AE-4536-9B37-530CE0FA165A}] => (Allow) %SystemRoot%\ehome\ehrecvr.exe => No File

==================== Restore Points =========================

09-11-2020 16:31:35 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/09/2020 04:35:45 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/09/2020 04:31:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (10/18/2020 10:48:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (10/08/2020 01:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (10/08/2020 09:15:50 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (09/30/2020 01:33:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (09/30/2020 01:25:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: 0456211f-9b01-4090-b0ed-b5fad82a1de2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/30/2020 01:25:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: d7252185-37cc-422c-ba04-c72a31c4ce9a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (11/09/2020 06:10:38 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.

Error: (11/09/2020 06:05:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.

Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.

Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.

Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.

Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v offline režimu.

Error: (11/09/2020 06:00:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.

Error: (11/09/2020 05:55:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.

Error: (11/09/2020 05:55:07 PM) (Source: BROWSER) (EventID: 8009) (User: )
Description: Prohledávač se nemůže povýšit na hlavní prohledávač. Za hlavní prohledávač
se aktuálně považuje počítač MYCLOUD-ZD4XRV.

Error: (11/09/2020 05:49:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.


CodeIntegrity:
===================================

Date: 2020-11-09 18:02:01.9650000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:59.5170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:59.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:58.9030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:58.7180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:58.4670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:53.5070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-09 18:01:53.2290000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F.19 05/27/2016
Motherboard: HP 80B8
Processor: AMD A8-7410 APU with AMD Radeon R5 Graphics
Percentage of memory in use: 82%
Total physical RAM: 3518.88 MB
Available physical RAM: 612.48 MB
Total Virtual: 5246.88 MB
Available Virtual: 1009.44 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.06 GB) (Free:11.24 GB) NTFS

\\?\Volume{b43d61db-c560-4a32-aca9-d31640847cfc}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{6d0efb9f-1fbc-45ac-8164-b24bf57fa9a5}\ () (Fixed) (Total:0.86 GB) (Free:0.34 GB) NTFS
\\?\Volume{6b087b33-927b-45cb-9213-bee70815187d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{8c374aef-a6e2-11e9-a577-e09467f6a030}\ () (Removable) (Total:1790.64 GB) (Free:681.37 GB) KDDFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zpomalené PC a nefunguje domací sít a myš

#2 Příspěvek od Rudy »

Zdravím!

Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Pavouk1
Návštěvník
Návštěvník
Příspěvky: 148
Registrován: 15 pro 2012 10:14

Re: zpomalené PC a nefunguje domací sít a myš

#3 Příspěvek od Pavouk1 »

Děkuji za odpověď, ale počítač už na nic nereagoval, nic nefungovalo, musel jsem přeinstalovat Windows 10 s formátovat HDD.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zpomalené PC a nefunguje domací sít a myš

#4 Příspěvek od Rudy »

To je mi líto, muselo jít o systémovou chybu. Nemáte zač! :(
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“