Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý NT a nefunkčná kamera

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Pomalý NT a nefunkčná kamera

#1 Příspěvek od mill »

Ahoj,
prosím o kontrolu:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2021
Ran by martin (administrator) on HP (Hewlett-Packard HP ProBook 6470b) (01-05-2021 14:45:54)
Running from C:\FR
Loaded Profiles: martin
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <9>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNACBSWK.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusClient.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hewlett-Packard -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Hewlett-Packard -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.) [File not signed]
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [8641536 2017-05-23] (Broadcom Corporation) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [118496 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CNAP2 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-09-17] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [191200 2015-10-08] (Hewlett-Packard -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-08-08] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [322432 2012-04-25] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [IFXSPMGT] => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109961080 2021-04-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\MountPoints2: {83b0bc82-15d0-11ea-b882-a0d3c19d7951} - D:\Startme.exe
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\Windows\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9265.86\Installer\chrmstp.exe [2021-04-29] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.91\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> c:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2014-03-06] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2014-03-06] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> C:\Windows\system32\DPLic.dll [2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-08-15]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Policies: C:\Users\martin\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09AC0A52-B124-4251-8DA9-90F39168D740} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform)
Task: {0A678FAD-C1EB-4D78-8D39-E02FB00752B4} - System32\Tasks\Opera scheduled Autoupdate 1609262867 => C:\Users\martin\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-26] (Opera Software AS -> Opera Software)
Task: {0B1F7198-B696-47D9-8B18-36AD885C358A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {1DCFCCE9-23DB-492B-8D95-9108CF7B8E10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
Task: {2A044336-2FC7-4EBC-8DA7-8DC88CF39E23} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
Task: {643F1F18-9EBA-4B4E-B0E2-06D7B066A430} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {8D4B7B8F-D2B3-47A7-BEA6-BCA21D2BCC06} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {91AD14C9-8387-477B-8C7C-A1925F1442D1} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
Task: {9E14A960-C717-475F-9E2F-81D1C0541B38} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {BA7A2D73-0887-4506-917B-67AAA81835DF} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BDFB9E97-AA36-4A88-9628-A4363675129A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229056 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
Task: {C9F20757-1AF5-4D47-ACA1-B4C60346C181} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {D3BC4B84-5898-496B-BA2E-A0FE4AE07A01} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4699872 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
Task: {DF4C10C5-23E2-47AE-A4F1-AF3D18C8779D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229056 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
Task: {F7CA13B6-125A-4246-A84E-D56538827CA7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{66D1DB48-A51F-47FF-A65B-DB79622F5D17}: [DhcpNameServer] 10.2.208.10 10.2.10.2 8.8.8.8
Tcpip\..\Interfaces\{A7DA650A-694A-4D87-ABDB-8D9152C5C42A}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{AF4B76E7-D0B4-4996-B09C-5993C56DE35A}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E88914A3-562B-49C9-866F-6CC8B4DBF93C}: [DhcpNameServer] 10.0.0.138 10.0.0.138

Edge:
=======
Edge Profile: C:\Users\martin\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-27]

FireFox:
========
FF DefaultProfile: 99xrqosu.default
FF ProfilePath: C:\Users\martin\AppData\Roaming\Mozilla\Firefox\Profiles\99xrqosu.default [2021-05-01]
FF Homepage: Mozilla\Firefox\Profiles\99xrqosu.default -> hxxps://www.google.com/
FF Extension: (FF Trusty Protecter) - C:\Users\martin\AppData\Roaming\Mozilla\Firefox\Profiles\99xrqosu.default\Extensions\{c2341a34-a3a0-4234-90cf-74df1db0aa49}.xpi [2018-01-07] [UpdateUrl:hxxps://trustyprotecterff.biz/update.json]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2016-08-16] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-09-29] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-09-29] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-07-20] (DigitalPersona, Inc. -> Digital Persona, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default [2021-05-01]
CHR StartupUrls: Default -> "hxxps://www.google.sk/"
CHR Extension: (Prezentace) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-01-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-24]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-04-27]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-04-27]
CHR Extension: (Prezentace) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-03]
CHR Extension: (Dokumenty) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-03]
CHR Extension: (Disk Google) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-03]
CHR Extension: (YouTube) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-03]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-04]
CHR Extension: (Tabulky) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-03]
CHR Extension: (Gmail) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-03]
CHR Extension: (Chrome Media Router) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-02]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-27]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-07-20]

Opera:
=======
OPR Profile: C:\Users\martin\AppData\Roaming\Opera Software\Opera Stable [2021-04-27]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7894040 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [606944 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [356064 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9265.86\elevation_service.exe [1396952 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-08-09] (BattlEye Innovations e.K. -> )
S2 DatoShortVo; C:\Program Files (x86)\Common Files\DatoShortVo\DatoShortVo.exe [1323800 2018-04-05] (SIMMERSON SERVICES LIMITED -> MypoTanFo) [File not signed]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-08-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [98008 2018-01-15] (Ellora Assets Corp -> Freemake)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [368512 2012-04-25] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 IFXSpMgtSrv; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
R2 IFXTCS; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [984440 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
R2 PersonalSecureDriveService; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [212344 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
S2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6939968 2020-12-29] () [File not signed] <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [628032 2020-12-29] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5894144 2017-05-23] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35664 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [212192 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [365024 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250336 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99288 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41296 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [180448 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522384 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107792 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82872 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [850632 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467720 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215352 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326992 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-25] (Infineon Technologies AG -> Infineon Technologies AG)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-16] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [543744 2012-11-12] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [85480 2020-12-29] (Digital Communications Inc -> Corp DCom) <==== ATTENTION
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2011-11-05] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2011-11-05] (Microsoft Corporation) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-01 14:44 - 2021-05-01 14:45 - 000000000 ____D C:\FR
2021-05-01 13:09 - 2021-05-01 14:51 - 000000000 ____D C:\FRST
2021-04-30 09:30 - 2021-04-30 09:30 - 038878889 _____ C:\Users\martin\Downloads\SEVERNÁ EURÓPA.pptx
2021-04-29 09:37 - 2021-04-30 08:02 - 000001310 _____ C:\Users\Public\Desktop\Skype.lnk
2021-04-29 09:37 - 2021-04-30 08:02 - 000001310 _____ C:\ProgramData\Desktop\Skype.lnk
2021-04-29 08:51 - 2021-04-29 08:52 - 019976996 _____ C:\Users\martin\Downloads\Lúčne rastliny a huby.pptx
2021-04-29 07:52 - 2021-04-29 07:52 - 080735624 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.49 (1).exe
2021-04-28 08:55 - 2021-04-28 08:56 - 080735624 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.49.exe
2021-04-27 08:19 - 2021-04-27 08:19 - 002770064 _____ C:\Users\martin\Downloads\Srdce - obehová sústava.pptx
2021-04-27 07:49 - 2021-04-30 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-04-26 13:06 - 2021-04-26 13:06 - 080749672 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.36 (1).exe
2021-04-25 19:07 - 2021-04-25 19:07 - 000000000 _____ C:\SDTE130.tmp
2021-04-23 19:33 - 2021-04-23 19:32 - 000339680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-04-23 19:33 - 2021-04-23 19:32 - 000215352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-04-23 11:38 - 2021-04-23 11:38 - 001535932 _____ C:\Users\martin\Downloads\Skúmanie rýchlosti chemických reakcií (1).pptx
2021-04-23 11:18 - 2021-04-23 11:19 - 001535932 _____ C:\Users\martin\Downloads\Skúmanie rýchlosti chemických reakcií.pptx
2021-04-23 10:09 - 2021-04-23 10:09 - 002594514 _____ C:\Users\martin\Downloads\Vznik písma..pptx
2021-04-23 08:52 - 2021-04-23 08:52 - 000571870 _____ C:\Users\martin\Downloads\7.ročník Unit 4 HW 23.4.pdf
2021-04-21 10:11 - 2021-04-21 10:12 - 080749672 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.36.exe
2021-04-21 09:57 - 2021-04-21 09:57 - 001871947 _____ C:\Users\martin\Downloads\Slovesá teória + precvičenie (1).pptx
2021-04-21 08:13 - 2021-04-21 08:13 - 001871947 _____ C:\Users\martin\Downloads\Slovesá teória + precvičenie.pptx
2021-04-20 09:21 - 2021-04-20 09:21 - 012174195 _____ C:\Users\martin\Downloads\Krv a cievy - prezentácia (1).pptx
2021-04-20 08:15 - 2021-04-20 08:15 - 012174195 _____ C:\Users\martin\Downloads\Krv a cievy - prezentácia.pptx
2021-04-18 16:22 - 2021-04-18 16:22 - 000416994 _____ C:\Users\martin\Downloads\7.ročník Unit 4 Reading.pdf
2021-04-16 13:45 - 2021-04-16 13:45 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie (2).pptx
2021-04-16 13:36 - 2021-04-16 13:36 - 000479761 _____ C:\Users\martin\Downloads\Exotermické a endotermické reakcie (1).pptx
2021-04-16 13:24 - 2021-04-16 13:24 - 000479761 _____ C:\Users\martin\Downloads\Exotermické a endotermické reakcie.pptx
2021-04-16 09:17 - 2021-04-16 09:17 - 004921019 _____ C:\Users\martin\Downloads\Percy Jackson - Zlodej blesku (1).pptx
2021-04-16 08:52 - 2021-04-16 08:52 - 004921019 _____ C:\Users\martin\Downloads\Percy Jackson - Zlodej blesku.pptx
2021-04-15 15:28 - 2021-04-15 15:28 - 001659781 _____ C:\Users\martin\Downloads\Ryby (1).pptx
2021-04-15 15:24 - 2021-04-15 15:24 - 001659781 _____ C:\Users\martin\Downloads\Ryby.pptx
2021-04-15 15:23 - 2021-04-15 15:23 - 000860672 _____ C:\Users\martin\Downloads\Hmyz žijúci vo vode a pri vode I..ppt
2021-04-15 15:18 - 2021-04-15 15:18 - 002416301 _____ C:\Users\martin\Downloads\Obojživelníky a plazy vo vode a na brehu.pptx
2021-04-15 15:00 - 2021-04-15 15:00 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (4).pptx
2021-04-15 14:59 - 2021-04-15 15:00 - 005572751 _____ C:\Users\martin\Downloads\Dažďové pralesy (1).pptx
2021-04-15 11:18 - 2021-04-15 11:18 - 005572751 _____ C:\Users\martin\Downloads\Dažďové pralesy.pptx
2021-04-15 10:37 - 2021-04-15 10:38 - 000537563 _____ C:\Users\martin\Downloads\5. rocnik ANJ Unit 4 Grammar (1).pdf
2021-04-15 09:06 - 2021-04-15 09:06 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (3).pptx
2021-04-15 08:44 - 2021-04-15 08:44 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (2).pptx
2021-04-15 08:40 - 2021-04-15 08:40 - 000537563 _____ C:\Users\martin\Downloads\5. rocnik ANJ Unit 4 Grammar.pdf
2021-04-15 08:03 - 2021-04-15 08:03 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce.pptx
2021-04-15 08:03 - 2021-04-15 08:03 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (1).pptx
2021-04-13 09:09 - 2021-04-13 09:09 - 000072477 _____ C:\Users\martin\Downloads\13.4. - Úmera - prezentácia - úvod (1).pptx
2021-04-13 09:01 - 2021-04-13 09:01 - 000072477 _____ C:\Users\martin\Downloads\13.4. - Úmera - prezentácia - úvod.pptx
2021-04-09 13:12 - 2021-04-09 13:12 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie (1).pptx
2021-04-09 11:55 - 2021-04-09 11:55 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie.pptx
2021-04-09 10:43 - 2021-04-09 10:44 - 000021647 _____ C:\Users\martin\Downloads\Opakovanie TC Dobrodružstvo v literatúre.odt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-01 13:36 - 2018-07-18 21:27 - 000000000 ____D C:\Users\martin\AppData\Local\AVAST Software
2021-05-01 13:08 - 2009-07-14 06:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-05-01 13:08 - 2009-07-14 06:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-05-01 12:56 - 2019-11-03 19:32 - 000000000 ____D C:\Program Files\CCleaner
2021-05-01 12:54 - 2021-03-06 17:11 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-05-01 10:56 - 2017-09-15 18:29 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-01 10:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-04-30 19:00 - 2020-12-29 19:28 - 000004030 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1609262867
2021-04-30 19:00 - 2019-11-03 19:32 - 000002798 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-04-30 19:00 - 2019-10-11 15:29 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-30 19:00 - 2019-10-11 15:29 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-30 19:00 - 2017-12-06 16:04 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-04-29 13:00 - 2021-03-27 18:53 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:53 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:53 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:52 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-04-28 07:38 - 2011-04-12 10:34 - 000669018 _____ C:\Windows\system32\perfh005.dat
2021-04-28 07:38 - 2011-04-12 10:34 - 000141646 _____ C:\Windows\system32\perfc005.dat
2021-04-28 07:38 - 2009-07-14 07:13 - 001584138 _____ C:\Windows\system32\PerfStringBackup.INI
2021-04-28 07:38 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-04-27 07:51 - 2019-10-11 15:30 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-27 07:51 - 2019-10-11 15:30 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-27 07:51 - 2019-10-11 15:30 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-04-26 08:08 - 2020-06-30 15:32 - 000002319 _____ C:\Users\martin\Desktop\Chrome.lnk
2021-04-25 15:12 - 2017-09-15 18:33 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-04-24 14:22 - 2018-07-23 11:46 - 000000000 ____D C:\Users\martin\AppData\Local\Roblox
2021-04-23 19:32 - 2020-10-18 10:24 - 000180448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-04-23 19:32 - 2020-04-15 08:50 - 000522384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-04-23 19:32 - 2019-01-05 20:05 - 000250336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-04-23 19:32 - 2019-01-05 20:05 - 000099288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-04-23 19:32 - 2018-10-20 18:45 - 000041296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000467720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000326992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000082872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-04-23 19:31 - 2019-01-14 16:09 - 000365024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-04-23 19:31 - 2019-01-05 20:05 - 000035664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-04-23 19:31 - 2017-11-17 01:22 - 000212192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-04-23 19:31 - 2017-09-15 18:33 - 000850632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-04-21 19:21 - 2021-03-07 15:35 - 000001138 _____ C:\Users\martin\Desktop\Roblox Studio.lnk
2021-04-21 19:21 - 2020-12-30 16:17 - 000001311 _____ C:\Users\martin\Desktop\Roblox Player.lnk
2021-04-21 19:21 - 2020-12-30 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox
2021-04-14 20:01 - 2016-08-17 09:04 - 131963968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-04-14 20:01 - 2016-08-17 09:04 - 000000000 ____D C:\Windows\system32\MRT

==================== Files in the root of some directories ========

2020-12-29 19:25 - 2020-12-29 19:25 - 000016438 _____ () C:\Users\martin\AppData\Local\partner.bmp
2019-10-11 15:38 - 2019-10-11 15:39 - 000007653 _____ () C:\Users\martin\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-04-22 09:50
==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-04-2021
Ran by martin (01-05-2021 14:57:51)
Running from C:\FR
Windows 7 Professional Service Pack 1 (X64) (2017-09-15 14:55:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2299519829-2069514295-2358146463-500 - Administrator - Disabled)
Guest (S-1-5-21-2299519829-2069514295-2358146463-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2299519829-2069514295-2358146463-1003 - Limited - Enabled)
martin (S-1-5-21-2299519829-2069514295-2358146463-1000 - Administrator - Enabled) => C:\Users\martin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Alcor Micro Smart Card Reader Driver (HKLM-x32\...\{F24F876B-7D71-4BD6-88E9-614D3BB84242}) (Version: 1.7.42.0 - Alcor Micro Corp.) Hidden
Alcor Micro Smart Card Reader Driver (HKLM-x32\...\SZCCID) (Version: 1.7.42.0 - Alcor Micro Corp.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.3.2459 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 90.0.9265.86 - Autoři prohlížeče Avast Secure Browser)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.30.223.232 - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.223.232 - Broadcom Corporation)
Canon LBP7010C/7018C (HKLM\...\Canon LBP7010C/7018C) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Davar4 (remove all files) (HKLM-x32\...\Davar4) (Version: - )
DocX Reader 2.0 (HKLM-x32\...\DocX Reader 2.0) (Version: - )
Embedded Security for HP ProtectTools (HKLM\...\{F75C607F-9341-47B3-83FC-CC66B9C519E8}) (Version: 7.0.100.3001 - Hewlett-Packard Company)
Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Freemake Video Converter verze 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Freemake YouTube To MP3 Boom (HKLM-x32\...\Freemake YouTube To MP3 Boom_is1) (Version: 1.0.4 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.93 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{F0809EF3-DE1B-4A3C-9825-D4ABD1BA06BC}) (Version: 4.8.10.1 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1112.2_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{C97CC14E-4789-4FC5-BC75-79191F7CE009}) (Version: 4.5.13.1 - Hewlett-Packard Company)
HP Power Assistant (HKLM\...\{BBDDFD86-E8E5-42FA-85E4-373FAE1DC731}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company)
HP QuickWeb (HKLM-x32\...\{6B5E7B4F-64A2-4DEB-B210-0DD92F940A01}) (Version: 3.0.3.9925 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{03619AEC-00EE-43CB-9F4F-25BE4C8C90D2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{B5BEF5F8-BD76-4174-A47D-05A06EA62615}) (Version: 2.7.1 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 2.00 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 17.3 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3223 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
ISA3 basic 3.0.2 (HKLM-x32\...\{EB17D8F3-3E62-4A91-96D0-7B2E55C33E07}_is1) (Version: 3.0.2 - Scripture4All Publishing)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 86.0 (x64 cs) (HKLM\...\Mozilla Firefox 86.0 (x64 cs)) (Version: 86.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.1 - Mozilla)
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 75.0.3969.243 (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Opera 75.0.3969.243) (Version: 75.0.3969.243 - Opera Software)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.10 - Razer Inc.)
Roblox Player (HKLM-x32\...\roblox-player-admin) (Version: - Roblox Corporation)
Roblox Player for martin (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio (HKLM-x32\...\roblox-studio-admin) (Version: - Roblox Corporation)
SAntivirus Realtime Protection Lite (HKLM-x32\...\SAntivirus) (Version: 1.0.22.22 - Corp DCom) <==== ATTENTION
Skype verze 8.71 (HKLM-x32\...\Skype_is1) (Version: 8.71 - Skype Technologies S.A.)
SSOption (HKLM-x32\...\SSOptin) (Version: 2.0.7.5 - FuchsiaCell LLC.) <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Zoom (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\ZoomUMX) (Version: 5.3.1 (52879.0927) - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\x64\PSDShExt.dll [2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-12-04] (Intel Corporation) [File not signed]
ContextMenuHandlers6: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\x64\PSDShExt.dll [2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\martin\Desktop\Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\martin\Desktop\Online File Converter.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 3G2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-3G2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 3GP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-3GP
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 7z.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-7Z
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AAC.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AAC
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AC3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AC3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AIFF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AIFF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AVI.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AVI
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AZW3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AZW3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to BMP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-BMP
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to EPS.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-EPS
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to EPUB.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ePub
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Excel.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Xls
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FB2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FB2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FLAC.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FLAC
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Flash.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Flash
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FLV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FLV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to GIF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-GIF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Html.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-HTML
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to iPhone.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-iPhone
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to JPG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-JPG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to LRF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-LRF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to M4A.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M4A
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MKV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MKV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MOBI.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MOBI
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Mov.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MOV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP4.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP4
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to ODF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to OGG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-OGG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to OpenOffice.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PDB.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PDB
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PDF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PDF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PhotoShop.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PSD
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PNG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PNG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PowerPoint.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PPT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to RM.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-RM
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Rtf.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.bz2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-bz2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.gz.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-gz
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.z.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-z
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to TCR.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TCR
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to TIFF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TIFF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Txt.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TXT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to W1V.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M1V
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to W2V.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M2V
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WAV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WAV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WebM.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WebM
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WMA.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WMA
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WMV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WMV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Word.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Doc
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Xbox 360.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Xbox360
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Xml.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-XML
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to YouTube.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-YouTube
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to ZIP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ZIP
ShortcutWithArgument: C:\Users\martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online File Converter.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo
ShortcutWithArgument: C:\Users\martin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Matrix (lol) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2010-06-14 17:41 - 2010-06-14 17:41 - 000514570 _____ () [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\sqlite3.dll
2021-04-27 07:49 - 2021-04-12 18:15 - 002552320 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2021-04-27 07:49 - 2021-04-12 18:15 - 000367104 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2021-04-27 07:49 - 2021-04-12 18:15 - 006631936 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2012-03-14 14:10 - 2012-03-14 14:10 - 000007168 _____ () [File not signed] C:\Program Files\Hewlett-Packard\HP Power Assistant\SDKCOMServerLib.dll
2012-02-10 14:26 - 2012-02-10 14:26 - 001083392 _____ () [File not signed] C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000005632 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\Interop.HPQWMIEXLib.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 002875904 _____ (Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmpeerapi.dll
2017-05-23 14:33 - 2017-05-23 14:33 - 000073728 _____ (Broadcom Corporation) [File not signed] C:\Windows\assembly\GAC_64\bcmwlrmt\6.30.223.0__6d6a20262490fcdc\bcmwlrmt.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 007641088 _____ (Broadcom Corporation) [File not signed] C:\Windows\system32\BCMWLCPL.CPL
2017-05-23 14:32 - 2017-05-23 14:32 - 000073216 _____ (Broadcom Corporation) [File not signed] C:\Windows\system32\wltrynt.dll
2015-10-08 11:59 - 2015-10-08 11:59 - 000351744 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Resource.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000140800 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomain.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000903168 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\PTHostServices.dll
2012-04-22 21:48 - 2012-04-22 21:48 - 004988928 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\IfxSpURs.dll.mui
2012-04-22 21:49 - 2012-04-22 21:49 - 000043008 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\IfxTRs.dll.mui
2012-04-22 21:53 - 2012-04-22 21:53 - 000227840 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\PsdRs.dll.mui
2012-01-23 12:25 - 2012-01-23 12:25 - 000670720 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtpmcp.dll
2016-08-15 20:03 - 2013-09-17 08:47 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2014-12-04 11:17 - 2014-12-04 11:17 - 000665600 _____ (Intel Corporation) [File not signed] C:\Windows\system32\igfxDH.dll
2014-12-04 11:17 - 2014-12-04 11:17 - 000272384 _____ (Intel Corporation) [File not signed] C:\Windows\system32\igfxDI.dll
2014-12-04 11:17 - 2014-12-04 11:17 - 000214528 _____ (Intel Corporation) [File not signed] C:\Windows\system32\igfxDTCM.dll
2014-12-04 11:17 - 2014-12-04 11:17 - 000250368 _____ (Intel Corporation) [File not signed] C:\Windows\system32\igfxLHM.dll
2019-03-27 23:34 - 2019-03-27 23:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2016-08-17 09:06 - 2016-08-17 09:06 - 000245760 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\MSVCP140.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\ucrtbase.DLL
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\VCRUNTIME140.dll
2021-05-01 10:56 - 2021-05-01 10:56 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050100\avast.local_vc142.crt\VCRUNTIME140_1.dll
2015-10-08 11:55 - 2015-10-08 11:55 - 001767424 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMBiosData.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 000336384 _____ (TODO: <Company name>) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmfshapi.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\martin\Desktop\Exercise 4: Irregular comparatives and superlatives Project Fourth Edition Oxford University Press.lnk [5032]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {1386FEFF-AA5F-4D14-BA61-F0A5D9B76A67} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {2C11E794-5941-4484-A7E2-9D242CD55304} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {35E0AE56-EAB0-4780-9526-D5F73E96EBF8} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {58225E64-511D-4901-A9EB-BF3EA1CD52FC} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {66EA2E6F-14EC-445D-939A-501C99E6A281} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {7CB66729-72CB-40D6-8BB3-B088B9287564} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {A2AF4169-1665-4E60-81C1-1D534022AC2E} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {A2E0143A-297A-4908-B4F4-D63510A5A7C9} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {AC2EB80E-3F27-414D-B1F2-25C40C92DC73} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-10-17 09:22 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;c:\Program Files\WIDCOMM\Bluetooth Software\;c:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;%systemroot%\System32\WindowsPowerShell\v1.0\;%systemroot%\System32\WindowsPowerShell\v1.0\;%systemroot%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\martin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{95161A7B-3662-4660-A187-EA1D6DD48EEB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{300CCD94-F863-4029-B5F7-FCAF868199D8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{723E4D09-66D6-4EF5-9418-576E27727726}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76C28A04-87BC-4E5D-9E25-E3D79F3EFFE1}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1EDFF197-8B26-4533-A2F3-53D3DB4EC394}] => (Allow) C:\Users\martin\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D3F6E67D-F5EA-4A35-9EDB-0FC6992E0E85}] => (Allow) C:\Users\martin\AppData\Local\Programs\Opera\75.0.3969.218\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{4C007120-7A6E-4DAE-890E-B8ABE52F50B0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{466C9573-F51D-4711-B4C9-115613F6ECD5}] => (Allow) C:\Users\martin\AppData\Local\Programs\Opera\75.0.3969.243\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{7ADF8488-FE5A-4CEF-A1A4-D0B55079A693}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D4261F9B-653A-45A4-8EF7-885FEA557B97}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{082C6601-F75E-4084-AE5C-0F4E1869DAF6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

29-04-2021 07:35:43 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/01/2021 02:24:47 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 02:10:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 28.4.2021.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1dc4

Čas spuštění: 01d73e82ec241e6d

Čas ukončení: 14

Cesta k aplikaci: C:\Users\martin\Desktop\FRST64.exe

ID hlášení: 35b135cc-aa76-11eb-820b-a0d3c19d7951

Error: (05/01/2021 12:56:10 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 11:56:09 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 11:06:33 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 10:57:10 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (04/30/2021 07:56:15 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (04/30/2021 06:56:10 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (05/01/2021 03:06:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:05:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:04:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:03:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:02:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:01:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 03:00:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.

Error: (05/01/2021 02:59:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAntivirusIC neuspěla při spuštění v důsledku následující chyby:
Operace nebyla úspěšně dokončena, protože soubor obsahuje virus.


==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICE Ver. F.67 04/07/2017
Motherboard: Hewlett-Packard 179C
Processor: Intel(R) Celeron(R) CPU B840 @ 1.90GHz
Percentage of memory in use: 88%
Total physical RAM: 3977.55 MB
Available physical RAM: 469.29 MB
Total Virtual: 7953.24 MB
Available Virtual: 3332.22 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:292.98 GB) (Free:95.43 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:0.02 GB) FAT32

\\?\Volume{7e2eb3f3-630f-11e6-aeb3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 7C7C37D0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#3 Příspěvek od mill »

Po restartu som nemal log, ani som ho potom nenašiel. Mám log ešte pred karanténou:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 01.05.21
Čas skenování: 19:35
Logovací soubor: 98300af6-aaa3-11eb-8619-a0d3c19d7951.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1273
Aktualizovat verzi balíku komponent: 1.0.40009
Licence: Zkušební

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: hp\martin

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 235191
Zjištěné hrozby: 35
Hrozby umístěné do karantény: 0
Uplynulý čas: 9 min, 23 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 19
Adware.SpecialSearchOffer, HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\SOFTWARE\SProvide, Žádná uživatelská akce, 522, 840940, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\MICROSOFT\TRACING\SAntivirusService_RASAPI32, Žádná uživatelská akce, 5447, 783947, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\MICROSOFT\TRACING\SAntivirusService_RASMANCS, Žádná uživatelská akce, 5447, 783947, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\SAntivirus, Žádná uživatelská akce, 5447, 783949, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\SegOption, Žádná uživatelská akce, 5447, 757809, 1.0.40009, , ame, , ,
Adware.SpecialSearchOffer, HKLM\SOFTWARE\SProvide, Žádná uživatelská akce, 522, 840938, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\WOW6432NODE\SAntivirus, Žádná uživatelská akce, 5447, 783949, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\WOW6432NODE\SAntivirusProduct, Žádná uživatelská akce, 5447, 783951, 1.0.40009, , ame, , ,
PUP.Optional.InstallCore, HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\SOFTWARE\CSASTATS\ic, Žádná uživatelská akce, 516, 586068, 1.0.40009, , ame, , ,
Adware.SpecialSearchOffer, HKLM\SOFTWARE\WOW6432NODE\SProvide, Žádná uživatelská akce, 522, 840938, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\MICROSOFT\WINDOWS\SAntivirus, Žádná uživatelská akce, 5447, 783948, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\SAntivirus, Žádná uživatelská akce, 5447, 783948, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SAntivirus, Žádná uživatelská akce, 5447, 783950, 1.0.40009, , ame, , ,
Adware.SpecialSearchOffer, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SSOptin, Žádná uživatelská akce, 522, 659008, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SAntivirusIC, Žádná uživatelská akce, 5447, 783952, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SAntivirusSvc, Žádná uživatelská akce, 5447, 783954, 1.0.40009, , ame, , ,
PUP.Optional.SpecialSearchOffer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DatoShortVo, Žádná uživatelská akce, 654, 583135, , , , , ,
PUP.Optional.Segurazo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TASANTIVIRUSKD, Žádná uživatelská akce, 5447, 901386, , , , , ,
PUP.Optional.Segurazo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SAntivirusIC, Žádná uživatelská akce, 5447, 931048, , , , , ,

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 6
PUP.Optional.MindSpark, C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\99XRQOSU.DEFAULT\EasyPDFCombine_ce, Žádná uživatelská akce, 772, 240302, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, C:\PROGRAMDATA\SANTIVIRUS, Žádná uživatelská akce, 5447, 783940, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SANTIVIRUS, Žádná uživatelská akce, 5447, 788609, 1.0.40009, , ame, , ,
PUP.Optional.Segurazo, C:\USERS\MARTIN\APPDATA\ROAMING\SANTIVIRUSCLIENT, Žádná uživatelská akce, 5447, 788610, 1.0.40009, , ame, , ,
Adware.SpecialSearchOffer, C:\PROGRAMDATA\SPROVIDE, Žádná uživatelská akce, 522, 840937, 1.0.40009, , ame, , ,
PUP.Optional.ForcedInstalledExtensionFF.Generic, C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\99XRQOSU.DEFAULT\BROWSER-EXTENSION-DATA\{C2341A34-A3A0-4234-90CF-74DF1DB0AA49}, Žádná uživatelská akce, 1886, 491238, 1.0.40009, , ame, , ,

Soubor: 10
PUP.Optional.MindSpark, C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\99XRQOSU.DEFAULT\EasyPDFCombine_ce\3ED704D1-62DC-4875-81AD-6D8E048488A6.sqlite, Žádná uživatelská akce, 772, 240302, 1.0.40009, , ame, , C911AC8C4641C1EC38BA0C3319E01F6A, 39E4492223D07014FFDB3FF095B969C265741871373425F0F2F33D84E6561350
PUP.Optional.ForcedInstalledExtensionFF, C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\99XRQOSU.DEFAULT\EXTENSIONS\{C2341A34-A3A0-4234-90CF-74DF1DB0AA49}.XPI, Žádná uživatelská akce, 1869, 558378, 1.0.40009, , ame, , D0D7D1031994DF564AC258FF9301DD06, 8257E71FCF4620AED53FB99FB02BF62466409A39B78C3AD5E3F6D884A452ED99
PUP.Optional.Segurazo, C:\PROGRAM FILES (X86)\DIGITAL COMMUNICATIONS\SANTIVIRUS\SANTIVIRUSIC.EXE, Žádná uživatelská akce, 5447, 783952, , , , , EC288FB965ABF8AD9F14AC01432C036A, 2188D29F83031EBFA9066BD2F4BD02741379B8819BCB247C6511C6C99BC46186
PUP.Optional.Segurazo, C:\PROGRAM FILES (X86)\DIGITAL COMMUNICATIONS\SANTIVIRUS\SANTIVIRUSSERVICE.EXE, Žádná uživatelská akce, 5447, 783954, , , , , 7C5EAAC8C756691C422027F7B3458759, BDA6B6C45EABFAD23B72C1982820202FA35A73211680C90E2E9D04E98FE91DAE
PUP.Optional.ForcedInstalledExtensionFF.Generic, C:\USERS\MARTIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\99XRQOSU.DEFAULT\BROWSER-EXTENSION-DATA\{C2341A34-A3A0-4234-90CF-74DF1DB0AA49}\STORAGE.JS, Žádná uživatelská akce, 1886, 491238, 1.0.40009, , ame, , CF69FA8DCC05C0DFC191734608F570CB, 7E75DF209E20CD61E072E234D8A44E01150B3828827E21ED04C69D3452646413
PUP.Optional.SpecialSearchOffer, C:\PROGRAM FILES (X86)\COMMON FILES\DATOSHORTVO\DATOSHORTVO.EXE, Žádná uživatelská akce, 654, 583135, 1.0.40009, A8104BA4695D973B91A66843, dds, 01226420, F56BB23D784B23F91B9EFA459974194E, 4C9BAA49D870DD4A6ECC1B5A69734904B7AF0C7F791539DC305C3694326517FF
PUP.Optional.Segurazo, C:\PROGRAM FILES (X86)\DIGITAL COMMUNICATIONS\SANTIVIRUS\TASANTIVIRUSKD.SYS, Žádná uživatelská akce, 5447, 901386, 1.0.40009, , ame, , 754B8A2FED5982EB78148A88573B75A7, 64E597C08632C649C4D2D4AEA3D368D93B3265B9E6CAAC107C3D3D83A0B4E8ED
PUP.Optional.Segurazo, C:\PROGRAM FILES (X86)\DIGITAL COMMUNICATIONS\SANTIVIRUS\SANTIVIRUSIC.EXE, Žádná uživatelská akce, 5447, 931048, 1.0.40009, , ame, , EC288FB965ABF8AD9F14AC01432C036A, 2188D29F83031EBFA9066BD2F4BD02741379B8819BCB247C6511C6C99BC46186
Malware.AI.4294121444, C:\USERS\MARTIN\DOCUMENTS\FREEMAKEYOUTUBETOMP3BOOMSETUP.EXE, Žádná uživatelská akce, 1000000, 0, 1.0.40009, DCC83D6939540E95FFF317E4, dds, 01226420, 1D57611F4640BB6D80C156484CBCAED9, A7853DABF02AD76144C9BE23BEC7E909D81225B47A332D4CFAA3FEF970EB4EE4
Generic.Malware/Suspicious, C:\USERS\MARTIN\DOCUMENTS\FREEMAKEVIDEOCONVERTERSETUP.EXE, Žádná uživatelská akce, 0, 392686, 1.0.40009, , shuriken, , F8622BAC425D8CE6E7AB5BB5AEFD3F6C, 0EA5F39F1D164CD3074AB6237ABBBC038F6843A3232C3D90F340CC692A68D0E6

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#4 Příspěvek od Rudy »

Log najdete v C:\ADWCleaner\Logs. Všechny položky malware musí být smazány (dány do karantény). Po té restartujte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#5 Příspěvek od mill »

Lenže mne nainštalovalo nejakú novú verziu a mám to v zložke "C:\Program Files\Malwarebytes\Anti-Malware". Ale v každom prípade som to dal do karantény. Treba aj tento log? Ale kde ho najdem? Posielam nový FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2021
Ran by martin (administrator) on HP (Hewlett-Packard HP ProBook 6470b) (02-05-2021 11:04:57)
Running from C:\FR
Loaded Profiles: martin
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9265.86\elevation_service.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvBugReport.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Broadcom Corporation) [File not signed] [File is in use] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNACBSWK.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hewlett-Packard -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Hewlett-Packard -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Opera Software AS -> Opera Software) C:\Users\martin\AppData\Local\Programs\Opera\75.0.3969.243\opera_autoupdate.exe <2>
(Opera Software AS -> Opera Software) C:\Users\martin\AppData\Local\Programs\Opera\launcher.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.) [File not signed]
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [8641536 2017-05-23] (Broadcom Corporation) [File not signed] [File is in use]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [118496 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CNAP2 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-09-17] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [191200 2015-10-08] (Hewlett-Packard -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-08-08] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [322432 2012-04-25] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [IFXSPMGT] => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109961080 2021-04-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\MountPoints2: {83b0bc82-15d0-11ea-b882-a0d3c19d7951} - D:\Startme.exe
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\Windows\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9265.86\Installer\chrmstp.exe [2021-04-29] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.91\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> c:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2014-03-06] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2014-03-06] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> C:\Windows\system32\DPLic.dll [2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-08-15]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Policies: C:\Users\martin\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09AC0A52-B124-4251-8DA9-90F39168D740} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform)
Task: {0A678FAD-C1EB-4D78-8D39-E02FB00752B4} - System32\Tasks\Opera scheduled Autoupdate 1609262867 => C:\Users\martin\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-26] (Opera Software AS -> Opera Software)
Task: {0B1F7198-B696-47D9-8B18-36AD885C358A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {1DCFCCE9-23DB-492B-8D95-9108CF7B8E10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
Task: {2A044336-2FC7-4EBC-8DA7-8DC88CF39E23} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
Task: {643F1F18-9EBA-4B4E-B0E2-06D7B066A430} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {8D4B7B8F-D2B3-47A7-BEA6-BCA21D2BCC06} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {91AD14C9-8387-477B-8C7C-A1925F1442D1} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
Task: {9E14A960-C717-475F-9E2F-81D1C0541B38} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {AC1F3A24-55CE-4361-8222-3BB85C2EDF0E} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BDFB9E97-AA36-4A88-9628-A4363675129A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229056 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
Task: {C9F20757-1AF5-4D47-ACA1-B4C60346C181} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {D3BC4B84-5898-496B-BA2E-A0FE4AE07A01} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4699872 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
Task: {DF4C10C5-23E2-47AE-A4F1-AF3D18C8779D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229056 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
Task: {F7CA13B6-125A-4246-A84E-D56538827CA7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{66D1DB48-A51F-47FF-A65B-DB79622F5D17}: [DhcpNameServer] 10.2.208.10 10.2.10.2 8.8.8.8
Tcpip\..\Interfaces\{A7DA650A-694A-4D87-ABDB-8D9152C5C42A}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{AF4B76E7-D0B4-4996-B09C-5993C56DE35A}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E88914A3-562B-49C9-866F-6CC8B4DBF93C}: [DhcpNameServer] 10.0.0.138 10.0.0.138

Edge:
=======
Edge Profile: C:\Users\martin\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-27]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 99xrqosu.default
FF ProfilePath: C:\Users\martin\AppData\Roaming\Mozilla\Firefox\Profiles\99xrqosu.default [2021-05-02]
FF Homepage: Mozilla\Firefox\Profiles\99xrqosu.default -> hxxps://www.google.com/
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2016-08-16] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-09-29] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-09-29] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-07-20] (DigitalPersona, Inc. -> Digital Persona, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default [2021-05-02]
CHR StartupUrls: Default -> "hxxps://www.google.sk/"
CHR Extension: (Prezentace) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-01-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-24]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-04-27]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-04-27]
CHR Extension: (Prezentace) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-03]
CHR Extension: (Dokumenty) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-03]
CHR Extension: (Disk Google) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-03]
CHR Extension: (YouTube) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-03]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-04]
CHR Extension: (Tabulky) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-03]
CHR Extension: (Gmail) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-03]
CHR Extension: (Chrome Media Router) - C:\Users\martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-02]
CHR Profile: C:\Users\martin\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-27]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-07-20]

Opera:
=======
OPR Profile: C:\Users\martin\AppData\Roaming\Opera Software\Opera Stable [2021-04-27]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7894040 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [606944 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [356064 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9265.86\elevation_service.exe [1396952 2021-04-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-08-09] (BattlEye Innovations e.K. -> )
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-20] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-08-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [98008 2018-01-15] (Ellora Assets Corp -> Freemake)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [368512 2012-04-25] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 IFXSpMgtSrv; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1128312 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
R2 IFXTCS; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [984440 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-05-01] (Malwarebytes Inc -> Malwarebytes)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
R2 PersonalSecureDriveService; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [212344 2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5894144 2017-05-23] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35664 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [212192 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [365024 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250336 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99288 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41296 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [180448 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522384 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107792 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82872 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [850632 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467720 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215352 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326992 2021-04-23] (Avast Software s.r.o. -> AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [199128 2021-05-01] (Malwarebytes Inc -> Malwarebytes)
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [77496 2021-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [146104 2021-05-02] (Malwarebytes Inc -> Malwarebytes)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-25] (Infineon Technologies AG -> Infineon Technologies AG)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-16] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [543744 2012-11-12] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2011-11-05] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2011-11-05] (Microsoft Corporation) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-02 11:03 - 2021-05-02 11:03 - 000077496 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-05-02 11:01 - 2021-05-02 11:01 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-05-02 11:01 - 2021-05-02 11:01 - 000146104 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-05-02 10:53 - 2021-05-02 10:53 - 000000000 ____D C:\AdwCleaner
2021-05-02 10:51 - 2021-05-02 10:52 - 008534696 _____ (Malwarebytes) C:\Users\martin\Desktop\AdwCleaner.exe
2021-05-02 10:25 - 2021-05-02 10:25 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-05-01 19:45 - 2021-05-01 19:45 - 000008021 _____ C:\Users\martin\Desktop\mb.txt
2021-05-01 19:13 - 2021-05-01 19:13 - 000000000 ____D C:\Users\martin\AppData\Local\CrashDumps
2021-05-01 19:08 - 2021-05-01 20:06 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-05-01 19:08 - 2021-05-01 19:08 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-01 19:08 - 2021-05-01 19:08 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-01 19:08 - 2021-05-01 19:08 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-05-01 19:08 - 2021-05-01 19:08 - 000000000 ____D C:\Users\martin\AppData\Local\mbam
2021-05-01 19:07 - 2021-05-01 19:06 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-05-01 19:06 - 2021-05-01 19:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-01 19:05 - 2021-05-01 19:05 - 000000000 ____D C:\Program Files\Malwarebytes
2021-05-01 19:02 - 2021-05-01 19:00 - 002078632 _____ (Malwarebytes) C:\Users\martin\Desktop\MBSetup.exe
2021-05-01 18:59 - 2021-05-01 19:00 - 002078632 _____ (Malwarebytes) C:\Users\martin\Downloads\MBSetup.exe
2021-05-01 14:44 - 2021-05-02 11:04 - 000000000 ____D C:\FR
2021-05-01 13:09 - 2021-05-02 11:17 - 000000000 ____D C:\FRST
2021-04-30 09:30 - 2021-04-30 09:30 - 038878889 _____ C:\Users\martin\Downloads\SEVERNÁ EURÓPA.pptx
2021-04-29 09:37 - 2021-04-30 08:02 - 000001310 _____ C:\Users\Public\Desktop\Skype.lnk
2021-04-29 09:37 - 2021-04-30 08:02 - 000001310 _____ C:\ProgramData\Desktop\Skype.lnk
2021-04-29 08:51 - 2021-04-29 08:52 - 019976996 _____ C:\Users\martin\Downloads\Lúčne rastliny a huby.pptx
2021-04-29 07:52 - 2021-04-29 07:52 - 080735624 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.49 (1).exe
2021-04-28 08:55 - 2021-04-28 08:56 - 080735624 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.49.exe
2021-04-27 08:19 - 2021-04-27 08:19 - 002770064 _____ C:\Users\martin\Downloads\Srdce - obehová sústava.pptx
2021-04-27 07:49 - 2021-04-30 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-04-26 13:06 - 2021-04-26 13:06 - 080749672 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.36 (1).exe
2021-04-25 19:07 - 2021-04-25 19:07 - 000000000 _____ C:\SDTE130.tmp
2021-04-23 19:33 - 2021-04-23 19:32 - 000339680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-04-23 19:33 - 2021-04-23 19:32 - 000215352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-04-23 11:38 - 2021-04-23 11:38 - 001535932 _____ C:\Users\martin\Downloads\Skúmanie rýchlosti chemických reakcií (1).pptx
2021-04-23 11:18 - 2021-04-23 11:19 - 001535932 _____ C:\Users\martin\Downloads\Skúmanie rýchlosti chemických reakcií.pptx
2021-04-23 10:09 - 2021-04-23 10:09 - 002594514 _____ C:\Users\martin\Downloads\Vznik písma..pptx
2021-04-23 08:52 - 2021-04-23 08:52 - 000571870 _____ C:\Users\martin\Downloads\7.ročník Unit 4 HW 23.4.pdf
2021-04-21 10:11 - 2021-04-21 10:12 - 080749672 _____ (Skype Technologies S.A.) C:\Users\martin\Downloads\Skype-8.71.0.36.exe
2021-04-21 09:57 - 2021-04-21 09:57 - 001871947 _____ C:\Users\martin\Downloads\Slovesá teória + precvičenie (1).pptx
2021-04-21 08:13 - 2021-04-21 08:13 - 001871947 _____ C:\Users\martin\Downloads\Slovesá teória + precvičenie.pptx
2021-04-20 09:21 - 2021-04-20 09:21 - 012174195 _____ C:\Users\martin\Downloads\Krv a cievy - prezentácia (1).pptx
2021-04-20 08:15 - 2021-04-20 08:15 - 012174195 _____ C:\Users\martin\Downloads\Krv a cievy - prezentácia.pptx
2021-04-18 16:22 - 2021-04-18 16:22 - 000416994 _____ C:\Users\martin\Downloads\7.ročník Unit 4 Reading.pdf
2021-04-16 13:45 - 2021-04-16 13:45 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie (2).pptx
2021-04-16 13:36 - 2021-04-16 13:36 - 000479761 _____ C:\Users\martin\Downloads\Exotermické a endotermické reakcie (1).pptx
2021-04-16 13:24 - 2021-04-16 13:24 - 000479761 _____ C:\Users\martin\Downloads\Exotermické a endotermické reakcie.pptx
2021-04-16 09:17 - 2021-04-16 09:17 - 004921019 _____ C:\Users\martin\Downloads\Percy Jackson - Zlodej blesku (1).pptx
2021-04-16 08:52 - 2021-04-16 08:52 - 004921019 _____ C:\Users\martin\Downloads\Percy Jackson - Zlodej blesku.pptx
2021-04-15 15:28 - 2021-04-15 15:28 - 001659781 _____ C:\Users\martin\Downloads\Ryby (1).pptx
2021-04-15 15:24 - 2021-04-15 15:24 - 001659781 _____ C:\Users\martin\Downloads\Ryby.pptx
2021-04-15 15:23 - 2021-04-15 15:23 - 000860672 _____ C:\Users\martin\Downloads\Hmyz žijúci vo vode a pri vode I..ppt
2021-04-15 15:18 - 2021-04-15 15:18 - 002416301 _____ C:\Users\martin\Downloads\Obojživelníky a plazy vo vode a na brehu.pptx
2021-04-15 15:00 - 2021-04-15 15:00 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (4).pptx
2021-04-15 14:59 - 2021-04-15 15:00 - 005572751 _____ C:\Users\martin\Downloads\Dažďové pralesy (1).pptx
2021-04-15 11:18 - 2021-04-15 11:18 - 005572751 _____ C:\Users\martin\Downloads\Dažďové pralesy.pptx
2021-04-15 10:37 - 2021-04-15 10:38 - 000537563 _____ C:\Users\martin\Downloads\5. rocnik ANJ Unit 4 Grammar (1).pdf
2021-04-15 09:06 - 2021-04-15 09:06 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (3).pptx
2021-04-15 08:44 - 2021-04-15 08:44 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (2).pptx
2021-04-15 08:40 - 2021-04-15 08:40 - 000537563 _____ C:\Users\martin\Downloads\5. rocnik ANJ Unit 4 Grammar.pdf
2021-04-15 08:03 - 2021-04-15 08:03 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce.pptx
2021-04-15 08:03 - 2021-04-15 08:03 - 010750797 _____ C:\Users\martin\Downloads\Vodné cicavce (1).pptx
2021-04-13 09:09 - 2021-04-13 09:09 - 000072477 _____ C:\Users\martin\Downloads\13.4. - Úmera - prezentácia - úvod (1).pptx
2021-04-13 09:01 - 2021-04-13 09:01 - 000072477 _____ C:\Users\martin\Downloads\13.4. - Úmera - prezentácia - úvod.pptx
2021-04-09 13:12 - 2021-04-09 13:12 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie (1).pptx
2021-04-09 11:55 - 2021-04-09 11:55 - 001375674 _____ C:\Users\martin\Downloads\Požiar a jeho hasenie.pptx
2021-04-09 10:43 - 2021-04-09 10:44 - 000021647 _____ C:\Users\martin\Downloads\Opakovanie TC Dobrodružstvo v literatúre.odt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-02 11:10 - 2009-07-14 06:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-05-02 11:10 - 2009-07-14 06:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-05-02 11:00 - 2019-11-03 19:32 - 000000000 ____D C:\Program Files\CCleaner
2021-05-02 10:59 - 2017-09-15 18:29 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-02 10:58 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-05-02 10:30 - 2017-09-15 18:33 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-05-01 19:12 - 2019-02-18 21:49 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-01 19:12 - 2017-09-15 18:26 - 000000000 ____D C:\Users\martin\AppData\LocalLow\Mozilla
2021-05-01 13:36 - 2018-07-18 21:27 - 000000000 ____D C:\Users\martin\AppData\Local\AVAST Software
2021-05-01 12:54 - 2021-03-06 17:11 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-04-30 19:00 - 2020-12-29 19:28 - 000004030 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1609262867
2021-04-30 19:00 - 2019-11-03 19:32 - 000002798 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-04-30 19:00 - 2019-10-11 15:29 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-30 19:00 - 2019-10-11 15:29 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-30 19:00 - 2017-12-06 16:04 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-04-29 13:00 - 2021-03-27 18:53 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:53 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:53 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-04-29 13:00 - 2021-03-27 18:52 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-04-28 07:38 - 2011-04-12 10:34 - 000669018 _____ C:\Windows\system32\perfh005.dat
2021-04-28 07:38 - 2011-04-12 10:34 - 000141646 _____ C:\Windows\system32\perfc005.dat
2021-04-28 07:38 - 2009-07-14 07:13 - 001584138 _____ C:\Windows\system32\PerfStringBackup.INI
2021-04-28 07:38 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-04-27 07:51 - 2019-10-11 15:30 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-27 07:51 - 2019-10-11 15:30 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-27 07:51 - 2019-10-11 15:30 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-04-26 08:08 - 2020-06-30 15:32 - 000002319 _____ C:\Users\martin\Desktop\Chrome.lnk
2021-04-24 14:22 - 2018-07-23 11:46 - 000000000 ____D C:\Users\martin\AppData\Local\Roblox
2021-04-23 19:32 - 2020-10-18 10:24 - 000180448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-04-23 19:32 - 2020-04-15 08:50 - 000522384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-04-23 19:32 - 2019-01-05 20:05 - 000250336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-04-23 19:32 - 2019-01-05 20:05 - 000099288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-04-23 19:32 - 2018-10-20 18:45 - 000041296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000467720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000326992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-04-23 19:32 - 2017-09-15 18:33 - 000082872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-04-23 19:31 - 2019-01-14 16:09 - 000365024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-04-23 19:31 - 2019-01-05 20:05 - 000035664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-04-23 19:31 - 2017-11-17 01:22 - 000212192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-04-23 19:31 - 2017-09-15 18:33 - 000850632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-04-21 19:21 - 2021-03-07 15:35 - 000001138 _____ C:\Users\martin\Desktop\Roblox Studio.lnk
2021-04-21 19:21 - 2020-12-30 16:17 - 000001311 _____ C:\Users\martin\Desktop\Roblox Player.lnk
2021-04-21 19:21 - 2020-12-30 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox
2021-04-14 20:01 - 2016-08-17 09:04 - 131963968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-04-14 20:01 - 2016-08-17 09:04 - 000000000 ____D C:\Windows\system32\MRT

==================== Files in the root of some directories ========

2020-12-29 19:25 - 2020-12-29 19:25 - 000016438 _____ () C:\Users\martin\AppData\Local\partner.bmp
2019-10-11 15:38 - 2019-10-11 15:39 - 000007653 _____ () C:\Users\martin\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-04-22 09:50
==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-04-2021
Ran by martin (02-05-2021 11:21:29)
Running from C:\FR
Windows 7 Professional Service Pack 1 (X64) (2017-09-15 14:55:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2299519829-2069514295-2358146463-500 - Administrator - Disabled)
Guest (S-1-5-21-2299519829-2069514295-2358146463-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2299519829-2069514295-2358146463-1003 - Limited - Enabled)
martin (S-1-5-21-2299519829-2069514295-2358146463-1000 - Administrator - Enabled) => C:\Users\martin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Alcor Micro Smart Card Reader Driver (HKLM-x32\...\{F24F876B-7D71-4BD6-88E9-614D3BB84242}) (Version: 1.7.42.0 - Alcor Micro Corp.) Hidden
Alcor Micro Smart Card Reader Driver (HKLM-x32\...\SZCCID) (Version: 1.7.42.0 - Alcor Micro Corp.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.3.2459 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 90.0.9265.86 - Autoři prohlížeče Avast Secure Browser)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.30.223.232 - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.223.232 - Broadcom Corporation)
Canon LBP7010C/7018C (HKLM\...\Canon LBP7010C/7018C) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Davar4 (remove all files) (HKLM-x32\...\Davar4) (Version: - )
DocX Reader 2.0 (HKLM-x32\...\DocX Reader 2.0) (Version: - )
Embedded Security for HP ProtectTools (HKLM\...\{F75C607F-9341-47B3-83FC-CC66B9C519E8}) (Version: 7.0.100.3001 - Hewlett-Packard Company)
Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Freemake Video Converter verze 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Freemake YouTube To MP3 Boom (HKLM-x32\...\Freemake YouTube To MP3 Boom_is1) (Version: 1.0.4 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.93 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{F0809EF3-DE1B-4A3C-9825-D4ABD1BA06BC}) (Version: 4.8.10.1 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1112.2_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{C97CC14E-4789-4FC5-BC75-79191F7CE009}) (Version: 4.5.13.1 - Hewlett-Packard Company)
HP Power Assistant (HKLM\...\{BBDDFD86-E8E5-42FA-85E4-373FAE1DC731}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company)
HP QuickWeb (HKLM-x32\...\{6B5E7B4F-64A2-4DEB-B210-0DD92F940A01}) (Version: 3.0.3.9925 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{03619AEC-00EE-43CB-9F4F-25BE4C8C90D2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{B5BEF5F8-BD76-4174-A47D-05A06EA62615}) (Version: 2.7.1 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 2.00 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 17.3 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3223 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
ISA3 basic 3.0.2 (HKLM-x32\...\{EB17D8F3-3E62-4A91-96D0-7B2E55C33E07}_is1) (Version: 3.0.2 - Scripture4All Publishing)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 86.0 (x64 cs) (HKLM\...\Mozilla Firefox 86.0 (x64 cs)) (Version: 86.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.1 - Mozilla)
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 75.0.3969.243 (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\Opera 75.0.3969.243) (Version: 75.0.3969.243 - Opera Software)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.10 - Razer Inc.)
Roblox Player (HKLM-x32\...\roblox-player-admin) (Version: - Roblox Corporation)
Roblox Player for martin (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio (HKLM-x32\...\roblox-studio-admin) (Version: - Roblox Corporation)
Skype verze 8.71 (HKLM-x32\...\Skype_is1) (Version: 8.71 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Zoom (HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\ZoomUMX) (Version: 5.3.1 (52879.0927) - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\x64\PSDShExt.dll [2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-05-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-12-04] (Intel Corporation) [File not signed]
ContextMenuHandlers6: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\x64\PSDShExt.dll [2012-04-22] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-04-23] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-05-01] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\martin\Desktop\Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\martin\Desktop\Online File Converter.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 3G2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-3G2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 3GP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-3GP
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to 7z.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-7Z
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AAC.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AAC
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AC3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AC3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AIFF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AIFF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AVI.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AVI
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to AZW3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-AZW3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to BMP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-BMP
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to EPS.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-EPS
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to EPUB.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ePub
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Excel.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Xls
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FB2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FB2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FLAC.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FLAC
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Flash.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Flash
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to FLV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-FLV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to GIF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-GIF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Html.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-HTML
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to iPhone.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-iPhone
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to JPG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-JPG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to LRF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-LRF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to M4A.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M4A
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MKV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MKV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MOBI.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MOBI
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Mov.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MOV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP3.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP3
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to MP4.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-MP4
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to ODF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to OGG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-OGG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to OpenOffice.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PDB.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PDB
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PDF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PDF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PhotoShop.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PSD
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PNG.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PNG
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to PowerPoint.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-PPT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to RM.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-RM
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Rtf.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ODF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.bz2.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-bz2
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.gz.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-gz
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Tar.z.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Tar-z
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to TCR.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TCR
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to TIFF.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TIFF
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Txt.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-TXT
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to W1V.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M1V
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to W2V.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-M2V
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WAV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WAV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WebM.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WebM
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WMA.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WMA
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to WMV.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-WMV
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Word.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Doc
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Xbox 360.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-Xbox360
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to Xml.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-XML
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to YouTube.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-YouTube
ShortcutWithArgument: C:\Users\martin\Desktop\Free Online File Converter\Convert to ZIP.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo?Key=Convert-to-ZIP
ShortcutWithArgument: C:\Users\martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online File Converter.lnk -> C:\Program Files (x86)\FoxPDF Software Inc\DocX Reader\OfficeLinks.exe () -> hxxp://www.cloud-converter.com/GoTo
ShortcutWithArgument: C:\Users\martin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Matrix (lol) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2012-03-14 14:10 - 2012-03-14 14:10 - 000007168 _____ () [File not signed] [File is in use] C:\Program Files\Hewlett-Packard\HP Power Assistant\SDKCOMServerLib.dll
2012-02-10 14:26 - 2012-02-10 14:26 - 001083392 _____ () [File not signed] [File is in use] C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000005632 _____ () [File not signed] [File is in use] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\Interop.HPQWMIEXLib.dll
2010-06-14 17:41 - 2010-06-14 17:41 - 000514570 _____ () [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\sqlite3.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 002875904 _____ (Broadcom Corporation) [File not signed] [File is in use] C:\Program Files\Broadcom\Broadcom 802.11\bcmpeerapi.dll
2017-05-23 14:33 - 2017-05-23 14:33 - 000073728 _____ (Broadcom Corporation) [File not signed] [File is in use] C:\Windows\assembly\GAC_64\bcmwlrmt\6.30.223.0__6d6a20262490fcdc\bcmwlrmt.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 000073216 _____ (Broadcom Corporation) [File not signed] C:\Windows\system32\wltrynt.dll
2015-10-08 11:59 - 2015-10-08 11:59 - 000351744 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] [File is in use] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Resource.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000140800 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] [File is in use] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomain.dll
2012-01-17 16:56 - 2012-01-17 16:56 - 000903168 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] [File is in use] C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\PTHostServices.dll
2012-04-22 21:48 - 2012-04-22 21:48 - 004988928 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\IfxSpURs.dll.mui
2012-04-22 21:49 - 2012-04-22 21:49 - 000043008 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\IfxTRs.dll.mui
2012-04-22 21:53 - 2012-04-22 21:53 - 000227840 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\cs\PsdRs.dll.mui
2012-01-23 12:25 - 2012-01-23 12:25 - 000670720 _____ (Infineon Technologies AG) [File not signed] C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtpmcp.dll
2016-08-15 20:03 - 2013-09-17 08:47 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2016-08-17 09:06 - 2016-08-17 09:06 - 000245760 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-09 17:50 - 2020-07-09 17:50 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\MSVCP140.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\ucrtbase.DLL
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\VCRUNTIME140.dll
2021-05-02 10:30 - 2021-05-02 10:30 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21050204\avast.local_vc142.crt\VCRUNTIME140_1.dll
2015-10-08 11:55 - 2015-10-08 11:55 - 001767424 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMBiosData.dll
2017-05-23 14:32 - 2017-05-23 14:32 - 000336384 _____ (TODO: <Company name>) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmfshapi.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\martin\Desktop\Exercise 4: Irregular comparatives and superlatives Project Fourth Edition Oxford University Press.lnk [5032]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {1386FEFF-AA5F-4D14-BA61-F0A5D9B76A67} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {2C11E794-5941-4484-A7E2-9D242CD55304} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {35E0AE56-EAB0-4780-9526-D5F73E96EBF8} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {58225E64-511D-4901-A9EB-BF3EA1CD52FC} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {66EA2E6F-14EC-445D-939A-501C99E6A281} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {7CB66729-72CB-40D6-8BB3-B088B9287564} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {A2AF4169-1665-4E60-81C1-1D534022AC2E} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {A2E0143A-297A-4908-B4F4-D63510A5A7C9} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2299519829-2069514295-2358146463-1000 -> {AC2EB80E-3F27-414D-B1F2-25C40C92DC73} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-10-17 09:22 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;c:\Program Files\WIDCOMM\Bluetooth Software\;c:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;%systemroot%\System32\WindowsPowerShell\v1.0\;%systemroot%\System32\WindowsPowerShell\v1.0\;%systemroot%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\martin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{95161A7B-3662-4660-A187-EA1D6DD48EEB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{300CCD94-F863-4029-B5F7-FCAF868199D8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{723E4D09-66D6-4EF5-9418-576E27727726}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76C28A04-87BC-4E5D-9E25-E3D79F3EFFE1}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1EDFF197-8B26-4533-A2F3-53D3DB4EC394}] => (Allow) C:\Users\martin\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D3F6E67D-F5EA-4A35-9EDB-0FC6992E0E85}] => (Allow) C:\Users\martin\AppData\Local\Programs\Opera\75.0.3969.218\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{4C007120-7A6E-4DAE-890E-B8ABE52F50B0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{466C9573-F51D-4711-B4C9-115613F6ECD5}] => (Allow) C:\Users\martin\AppData\Local\Programs\Opera\75.0.3969.243\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{7ADF8488-FE5A-4CEF-A1A4-D0B55079A693}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D4261F9B-653A-45A4-8EF7-885FEA557B97}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{082C6601-F75E-4084-AE5C-0F4E1869DAF6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

29-04-2021 07:35:43 Windows Update
02-05-2021 10:39:24 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/02/2021 10:56:36 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/02/2021 10:47:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MBAMService.exe, verze: 3.2.0.943, časové razítko: 0x5fbd5689
Název chybujícího modulu: RTPControllerImpl.dll_unloaded, verze: 0.0.0.0, časové razítko: 0x606b7d2e
Kód výjimky: 0xc0000005
Posun chyby: 0x000007fecfd745a0
ID chybujícího procesu: 0xb00
Čas spuštění chybující aplikace: 0x01d73f2c8fe54378
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Cesta k chybujícímu modulu: RTPControllerImpl.dll
ID zprávy: f6b0677c-ab22-11eb-99a3-a0d3c19d7951

Error: (05/02/2021 10:42:39 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 07:59:40 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 07:26:35 PM) (Source: SAntivirusSvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/01/2021 07:12:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 4.0.0.974, časové razítko: 0x60786110
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0xf98
Čas spuštění chybující aplikace: 0x01d73eaca3dd0aac
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 5de0fa51-aaa0-11eb-820b-a0d3c19d7951

Error: (05/01/2021 07:02:21 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/01/2021 06:02:32 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (05/02/2021 11:06:36 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application User Notification Service přestala během spouštění reagovat.

Error: (05/02/2021 11:00:23 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/02/2021 11:00:23 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/02/2021 11:00:23 AM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: Protokol PNRP (Peer Name Resolution Protocol) nebylo možné spustit, protože se nezdařilo vytvoření nové identity. Kód chyby: 0x80630801.

Error: (05/02/2021 11:00:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/02/2021 11:00:14 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/02/2021 11:00:14 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/02/2021 11:00:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535


==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICE Ver. F.67 04/07/2017
Motherboard: Hewlett-Packard 179C
Processor: Intel(R) Celeron(R) CPU B840 @ 1.90GHz
Percentage of memory in use: 82%
Total physical RAM: 3977.55 MB
Available physical RAM: 689.09 MB
Total Virtual: 7953.24 MB
Available Virtual: 4023.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:292.98 GB) (Free:92.01 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:0.02 GB) FAT32

\\?\Volume{7e2eb3f3-630f-11e6-aeb3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 7C7C37D0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#6 Příspěvek od Rudy »

OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\MountPoints2: {83b0bc82-15d0-11ea-b882-a0d3c19d7951} - D:\Startme.exe
Policies: C:\Users\martin\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {1DCFCCE9-23DB-492B-8D95-9108CF7B8E10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
Task: {F7CA13B6-125A-4246-A84E-D56538827CA7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
C:\SDTE130.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\martin\Desktop\Exercise 4: Irregular comparatives and superlatives Project Fourth Edition Oxford University Press.lnk [5032]

EmptyTemp:
End
Uložte do C:\FR jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#7 Příspěvek od mill »

Posielam:

Fix result of Farbar Recovery Scan Tool (x64) Version: 28-04-2021
Ran by martin (02-05-2021 12:45:28) Run:1
Running from C:\FR
Loaded Profiles: martin
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\...\MountPoints2: {83b0bc82-15d0-11ea-b882-a0d3c19d7951} - D:\Startme.exe
Policies: C:\Users\martin\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {1DCFCCE9-23DB-492B-8D95-9108CF7B8E10} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
Task: {F7CA13B6-125A-4246-A84E-D56538827CA7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-11] (Google Inc -> Google LLC)
C:\SDTE130.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\martin\Desktop\Exercise 4: Irregular comparatives and superlatives Project Fourth Edition Oxford University Press.lnk [5032]

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2299519829-2069514295-2358146463-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{83b0bc82-15d0-11ea-b882-a0d3c19d7951} => removed successfully
C:\Users\martin\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1DCFCCE9-23DB-492B-8D95-9108CF7B8E10}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DCFCCE9-23DB-492B-8D95-9108CF7B8E10}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F7CA13B6-125A-4246-A84E-D56538827CA7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F7CA13B6-125A-4246-A84E-D56538827CA7}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\SDTE130.tmp => moved successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\martin\Desktop\Exercise 4 => ": Irregular comparatives and superlatives Project Fourth Edition Oxford University Press.lnk" ADS could not remove.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10687450 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 81933983 B
Edge => 0 B
Chrome => 419759696 B
Firefox => 13714415 B
Opera => 5977162 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 20685428 B
martin => 567574583 B

RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:47:52 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#9 Příspěvek od mill »

NT už ide rýchlejšie, ale tá webkamera na SKYPE stále nefunguje. Mna všetci keď volám vidia, ale ja sám sa na nej nevidím. Ako je to možné?
Poadarilo sa mi aj nainštalovať ADW, ako ho mám teraz dať preč? Či len z C: zmazať?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#10 Příspěvek od Rudy »

OK. ADW znovu spusťte, klolněte na nastavení, srolujte a na samém konci najdete "Odstranit ADW". Klikněte a ADW se odinstaluje. Zkuste přeinstalovat ovladač kamery.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#11 Příspěvek od mill »

Ovládač kamery som preinštaloval a nič, stále nefunguje...

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#12 Příspěvek od Rudy »

mill píše: 02 kvě 2021 15:01 NT už ide rýchlejšie, ale tá webkamera na SKYPE stále nefunguje. Mna všetci keď volám vidia, ale ja sám sa na nej nevidím. Ako je to možné?
Poadarilo sa mi aj nainštalovať ADW, ako ho mám teraz dať preč? Či len z C: zmazať?
Potom to může být problém nastavení Skype. Když vás ostatní vidí, pak kamera snímá.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#13 Příspěvek od mill »

Nastavenie SKYPE sme nemenili, aj som SKYPE úplne odinštaloval a znova nainštaloval a nejde....

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NT a nefunkčná kamera

#14 Příspěvek od Rudy »

To, že jste nastaverní neměnil, nic neznamená. Mohlo se změnit klidně samo. Zde: https://www.zive.cz/poradna/nejde-webka ... tanswers=1 je několik rad. Zřejmě nejde o malwarový problém.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mill
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 11 říj 2019 14:58

Re: Pomalý NT a nefunkčná kamera

#15 Příspěvek od mill »

Takže, som zistil, že nakoniec som musel nainštalovať staršiu verzii SKYPE, najnovšia s najnovšou aktualizáciou to robí problém.
Ďakujem za vyčistenie NT a odbornú pomoc.

Zamčeno