Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola NTB

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Polska Pasha
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 113
Registrován: 29 čer 2014 09:06

Kontrola NTB

#1 Příspěvek od Polska Pasha »

Dobrý den mohl by jste mi zkontrolovat logy? Díky.

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-01-2022 01
Ran by gosse (administrator) on LAPTOP-BDPBB4VM (LENOVO 81D1) (13-01-2022 12:05:52)
Running from C:\Users\gosse\AppData\Local\Temp\scoped_dir6748_1348087287
Loaded Profiles: gosse
Platform: Microsoft Windows 10 Home Version 1803 17134.1130 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\gosse\AppData\Roaming\uTorrent\updates\3.5.5_46096\utorrentie.exe <2>
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\gosse\AppData\Roaming\uTorrent\uTorrent.exe
(CYBERLINKCOM CORPORATION) C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.9516.0_x86__m916jedk64snt\Power2Go8\CLMLSvc_P2G8.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_3164bd4536ecf0a4\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch_base.inf_amd64_adfc895a03788015\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch_base.inf_amd64_adfc895a03788015\IntelCpHeciSvc.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.0.50.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [776240 2018-10-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\Run: [uTorrent] => C:\Users\gosse\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-20] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\Run: [ut] => C:\Users\gosse\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-20] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\Run: [Opera Browser Assistant] => C:\Users\gosse\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat [2018-01-07] () [File not signed]
Startup: C:\Users\gosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-05-18]
ShortcutTarget: MEGAsync.lnk -> C:\Users\gosse\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1D77D0F5-D0D8-4250-9C67-DE842EE05058} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {205A6947-A252-42BA-9E31-AA1BD38D4C4F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {23396AF0-3AD7-4B2D-B214-BF8206248939} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2104316510-2255408751-1019769746-1002 => C:\Users\gosse\AppData\Local\MEGAsync\MEGAupdater.exe [1303800 2021-03-18] (Mega Limited -> Mega Limited)
Task: {23E7A971-068D-403E-B6FE-9DDE17D2FE59} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\gosse\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {31F787CE-C2AC-468E-AC31-9D0C9A847B81} - \Lenovo\ImController\TimeBasedEvents\993a42ec-ccd2-424a-b433-9984d159778c -> No File <==== ATTENTION
Task: {3BE22AEB-273B-4B3E-BD9A-43E6A32B32BC} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {45335E2F-0404-4700-9EE0-D1921E3F062A} - \Lenovo\ImController\TimeBasedEvents\6deece0c-d5e9-4242-8118-1f12b5aecfb4 -> No File <==== ATTENTION
Task: {47EA2C8A-70A3-464A-A12B-D6415A1064BB} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4EC4F3E1-AC86-4CF0-93A5-3A6831BA3F66} - System32\Tasks\Opera scheduled Autoupdate 1542818868 => C:\Users\gosse\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-21] (Opera Software AS -> Opera Software)
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player PPAPI Notifier" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - gosse" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Intel PTT EK Recertification" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task v2" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1583230259" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1542818868" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\RtkAudUService64_BG" /ENABLE
Task: {54A1D26A-3D44-47F9-9325-D0A0F95F2E0C} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {58711638-2746-4598-AF54-18734D1D3338} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {5A4D14E7-5DAB-4BAB-9671-4C54F25A2348} - \Lenovo\ImController\TimeBasedEvents\ba70170b-9ca7-40c6-a828-c981e2a095b6 -> No File <==== ATTENTION
Task: {5DFC4683-F460-46F6-A324-F1A398ACB3FF} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\system32\RtkAudUService64.exe [776240 2018-10-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {77BA7FFB-E938-4BB2-BBCD-88A7CD446A42} - System32\Tasks\CCleanerSkipUAC - gosse => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8786CE81-9FC9-40F8-BB85-832BB79571B9} - System32\Tasks\Opera scheduled assistant Autoupdate 1583230259 => C:\Users\gosse\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-21] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\gosse\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A0F2C4E3-9B8E-4D23-92C9-555F91608189} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {D4A8B245-AE07-43BE-9A08-8F13632B3FF0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform)
Task: {EF409E1B-059B-4AF5-9D8D-4AFF9B59400A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4D00D09-D076-4EFF-A9AB-E34FE1B1141A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7D35A54-1F8B-438E-8E1A-D6806FD76110} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-09-07] (Adobe Inc. -> Adobe)
Task: {F94A9A2A-FC4F-462C-817B-B458E558140E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-04] (Avast Software s.r.o. -> Avast Software)
Task: {FAD4290C-CD5A-48CE-BF29-4F85FD4A09FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4969240 2021-12-15] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 91.103.164.7 91.103.164.5 91.103.164.10
Tcpip\..\Interfaces\{02033c52-972b-4f80-9a9f-d4ce0a20c0d2}: [DhcpNameServer] 192.168.88.1 91.103.164.7 91.103.164.5 91.103.164.10
Tcpip\..\Interfaces\{4bc72028-14fa-4c7b-ae3b-78b4832286d5}: [DhcpNameServer] 150.212.1.2

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)

Opera:
=======
OPR Profile: C:\Users\gosse\AppData\Roaming\Opera Software\Opera Stable [2022-01-13]
OPR Notifications: Opera Stable -> hxxps://web.whatsapp.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\gosse\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-23]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\gosse\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-21]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8480848 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [452888 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1720088 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [452888 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-30] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602544 2018-09-27] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [286656 2018-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2022-01-06] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36784 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [65472 2017-12-06] (WDKTestCert aswbldsv,131431045756648395 -> Qualcomm)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-06] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-13 12:04 - 2022-01-13 12:06 - 000000000 ____D C:\FRST
2022-01-13 12:03 - 2022-01-13 12:03 - 002311680 _____ (Farbar) C:\Users\gosse\Downloads\FRST64.exe
2022-01-08 15:45 - 2022-01-08 16:02 - 1001167771 _____ C:\Users\gosse\Downloads\Por - Slim And Pretty Por! 07 Aug 2018 Ladyboy Solo Shemale FranksTGirlWorld.mp4
2022-01-08 15:45 - 2022-01-08 15:54 - 1142746118 _____ C:\Users\gosse\Downloads\Por - Por’s Creamy Orgasm! 27 Aug 2018 Ladyboy Solo Shemale FranksTGirlWorld.mp4
2022-01-08 12:21 - 2022-01-09 23:53 - 1323374562 _____ C:\Users\gosse\Downloads\Ladyboy-Ladyboy.com.2018.01.17.Cake.mp4
2022-01-08 12:21 - 2022-01-08 13:05 - 2306023818 ____R C:\Users\gosse\Downloads\rintor_TR_TJ18_1080_2021.mp4
2022-01-08 12:21 - 2022-01-08 12:21 - 000008264 _____ C:\Users\gosse\Downloads\2843655.torrent
2022-01-08 10:30 - 2022-01-08 10:30 - 000052043 _____ C:\Users\gosse\Downloads\t1916139.torrent
2022-01-08 10:30 - 2022-01-08 10:30 - 000000000 ____D C:\Users\gosse\Downloads\Newhalfclub - nan0136_02 - HD
2022-01-08 10:23 - 2022-01-08 18:16 - 1132760421 ____R C:\Users\gosse\Downloads\Franks-TGirlWorld.com.2017.06.07.Ying.mp4
2022-01-08 10:23 - 2022-01-08 10:23 - 000011769 _____ C:\Users\gosse\Downloads\t1960229.torrent
2022-01-08 10:21 - 2022-01-08 10:45 - 906500128 ____R C:\Users\gosse\Downloads\Franks-TGirlWorld.com.2018.10.22.Alicia.mp4
2022-01-08 10:21 - 2022-01-08 10:21 - 000018253 _____ C:\Users\gosse\Downloads\t1962631.torrent
2022-01-08 10:18 - 2022-01-08 10:55 - 1558432332 ____R C:\Users\gosse\Downloads\[Franks-TGirlWorld] Linda Debuts! (17-02-2021) 1080p.mp4
2022-01-08 10:18 - 2022-01-08 10:18 - 000015900 _____ C:\Users\gosse\Downloads\t2020660.torrent
2022-01-08 08:00 - 2022-01-13 11:56 - 000000000 ____D C:\Users\gosse\AppData\LocalLow\uTorrent
2022-01-08 02:31 - 2022-01-08 10:02 - 2171225413 ____R C:\Users\gosse\Downloads\[GroobyProductions.com│TGirlJapanHardcore.com] Mayumi Harukaze (Mayumi's Explosive Entrance!) [2016] Remastered Oct 01, 2020.mp4
2022-01-08 02:28 - 2022-01-08 02:28 - 000084138 _____ C:\Users\gosse\Downloads\t1913998.torrent
2022-01-08 02:27 - 2022-01-08 05:36 - 1838274606 ____R C:\Users\gosse\Downloads\[GroobyProductions.com│TGirlJapanHardcore.com] Yui Kawai (Yui Loves It Up Her!) [2016] Remastered Jul 09, 2020.mp4
2022-01-08 02:25 - 2022-01-08 02:25 - 000071455 _____ C:\Users\gosse\Downloads\t1911794.torrent
2022-01-08 02:17 - 2022-01-08 02:25 - 1040604217 ____R C:\Users\gosse\Downloads\bella3.mp4
2022-01-08 02:17 - 2022-01-08 02:17 - 000040652 _____ C:\Users\gosse\Downloads\t2048053.torrent
2022-01-08 02:08 - 2022-01-08 02:08 - 000013583 _____ C:\Users\gosse\Downloads\t1990833.torrent
2022-01-07 23:34 - 2022-01-07 23:34 - 000024497 _____ C:\Users\gosse\Downloads\t2037607.torrent
2022-01-06 10:41 - 2022-01-06 10:41 - 000000000 ____D C:\Users\gosse\AppData\Local\mbam
2022-01-06 10:40 - 2022-01-06 10:40 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-01-06 10:40 - 2022-01-06 10:40 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-06 10:40 - 2022-01-06 10:39 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-01-06 10:40 - 2022-01-06 10:39 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-01-06 10:39 - 2022-01-06 10:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-06 10:38 - 2022-01-06 10:39 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-06 10:37 - 2022-01-06 10:37 - 002910904 _____ (Malwarebytes) C:\Users\gosse\Downloads\MBSetup.exe
2022-01-01 14:48 - 2022-01-06 10:36 - 000000000 ____D C:\Users\gosse\Desktop\Wallpaper
2021-12-30 20:21 - 2021-12-30 20:22 - 432897193 _____ C:\Users\gosse\Desktop\ambar__butt.mp4
2021-12-27 20:52 - 2021-12-27 20:53 - 000000000 ____D C:\Users\gosse\Desktop\GRiNGOWORLD
2021-12-27 12:14 - 2021-12-27 12:14 - 000000000 ____D C:\Users\gosse\Desktop\Shirin David - Bitches brauchen Rap
2021-12-27 11:49 - 2021-12-27 11:49 - 000000000 ____D C:\Users\gosse\Desktop\Bushido - Sonny Black 2
2021-12-27 11:16 - 2021-12-27 11:16 - 000000000 ____D C:\Users\gosse\Desktop\Haze - Die Zwielicht EP
2021-12-25 10:25 - 2021-12-25 11:13 - 1049226585 _____ C:\Users\gosse\Downloads\rintor_TR_EG_1080_2021.mp4
2021-12-22 21:19 - 2021-12-27 11:24 - 000000000 ____D C:\Users\gosse\AppData\Roaming\.minecraft
2021-12-22 21:19 - 2021-12-22 21:19 - 000000000 ____D C:\Users\gosse\AppData\Roaming\Mojang
2021-12-22 21:17 - 2021-12-22 21:17 - 026552740 _____ C:\Users\gosse\Downloads\svět1.rar
2021-12-22 21:14 - 2021-12-22 21:16 - 225202958 _____ (Mojang) C:\Users\gosse\Downloads\Minecraft 1.12.2 CZ + Titan Launcher.exe
2021-12-17 22:58 - 2021-12-17 23:11 - 1019794789 _____ C:\Users\gosse\Downloads\Veronica Vertex Strokes It (31.08.2021) 1080p.mp4
2021-12-17 22:51 - 2021-12-17 22:59 - 698822807 _____ C:\Users\gosse\Downloads\KinkClassics - Jessica Fox - Big Boss Becomes Dungeon Anal Whore_December 9, 2021_480p.mp4
2021-12-17 22:00 - 2021-12-17 23:08 - 2744142531 _____ C:\Users\gosse\Downloads\2021-12-02 13-29-44.mkv
2021-12-17 21:31 - 2021-12-17 21:44 - 885732295 _____ C:\Users\gosse\Downloads\Foxxy & Mason Lear - My Mistress In Denim (08-12-2021) 1080p.mp4
2021-12-17 20:59 - 2021-12-18 02:01 - 2529634511 _____ C:\Users\gosse\Downloads\2021-12-17 10-27-22.mkv
2021-12-16 11:08 - 2021-12-17 09:17 - 1290458347 _____ C:\Users\gosse\Downloads\Lola Morena Cums For You (20.08.2021) 1080p.mp4
2021-12-15 13:11 - 2021-12-15 13:11 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2021-12-15 13:10 - 2021-12-15 13:10 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-12-15 13:10 - 2021-12-15 13:10 - 000215432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-13 12:08 - 2020-02-12 10:15 - 000000000 ____D C:\Users\gosse\AppData\Roaming\uTorrent
2022-01-13 12:05 - 2018-12-15 23:26 - 000000000 ____D C:\Program Files\CCleaner
2022-01-13 12:04 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-13 11:54 - 2021-08-30 15:52 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - gosse
2022-01-13 11:54 - 2021-08-15 06:17 - 000003768 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1583230259
2022-01-13 11:54 - 2019-04-13 21:12 - 000003788 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2022-01-13 11:54 - 2019-02-24 12:37 - 000002310 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2022-01-13 11:54 - 2018-12-15 23:27 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-13 11:54 - 2018-11-22 15:27 - 000003514 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1542818868
2022-01-13 11:54 - 2018-11-22 15:27 - 000003134 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2022-01-13 11:54 - 2018-11-22 15:27 - 000002770 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2022-01-13 11:54 - 2018-11-22 15:13 - 000000000 ____D C:\Users\gosse
2022-01-13 11:53 - 2018-11-22 15:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-13 11:53 - 2018-11-22 15:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-12 14:00 - 2018-11-22 16:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-01-12 10:59 - 2020-02-12 10:15 - 000000000 ____D C:\Users\gosse\AppData\Local\BitTorrentHelper
2022-01-11 14:51 - 2018-11-22 16:28 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-01-11 10:17 - 2021-06-04 18:14 - 000000000 ____D C:\Users\gosse\Desktop\Vsechno
2022-01-09 17:52 - 2018-11-24 10:54 - 000000000 ____D C:\Users\gosse\AppData\Roaming\vlc
2022-01-08 13:23 - 2018-11-22 16:40 - 000000000 ___RD C:\Users\gosse\Downloads\xxx
2022-01-08 04:56 - 2018-11-23 15:59 - 000000000 ____D C:\Users\gosse\AppData\Local\CrashDumps
2022-01-06 11:04 - 2021-12-01 15:14 - 000000026 _____ C:\Users\gosse\Desktop\Nový textový dokument.txt
2022-01-06 10:40 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-06 10:30 - 2018-11-22 16:24 - 000000000 ____D C:\ProgramData\AVAST Software
2022-01-06 10:26 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-03 13:18 - 2018-11-21 17:47 - 000001416 _____ C:\Users\gosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2022-01-01 14:50 - 2021-12-13 22:41 - 000000000 ____D C:\Users\gosse\Desktop\Kalim - T.O.T.Y
2021-12-19 12:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-18 20:02 - 2021-01-04 13:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-17 14:26 - 2018-11-22 15:23 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-17 14:26 - 2018-04-12 16:50 - 000681858 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-17 14:26 - 2018-04-12 16:50 - 000136754 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-17 14:26 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2021-12-16 09:35 - 2018-11-21 17:42 - 000000000 ____D C:\Users\gosse\AppData\Local\PlaceholderTileLogoFolder
2021-12-15 13:10 - 2020-10-13 13:36 - 000186280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-12-15 13:10 - 2020-04-26 14:26 - 000540056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-12-15 13:10 - 2019-01-14 14:49 - 000369216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-12-15 13:10 - 2019-01-05 07:11 - 000252992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-12-15 13:10 - 2019-01-05 07:11 - 000100416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-12-15 13:10 - 2019-01-05 07:11 - 000036784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000853800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000545176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000318760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000223176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000108912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000083976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-12-15 13:10 - 2018-11-22 16:27 - 000042416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys

==================== Files in the root of some directories ========

2021-10-30 09:34 - 2021-10-30 09:55 - 000032882 _____ () C:\Users\gosse\AppData\Local\PlariumPlay.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-01-2022 01
Ran by gosse (13-01-2022 12:09:08)
Running from C:\Users\gosse\AppData\Local\Temp\scoped_dir6748_1348087287
Microsoft Windows 10 Home Version 1803 17134.1130 (X64) (2018-11-22 14:28:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2104316510-2255408751-1019769746-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2104316510-2255408751-1019769746-503 - Limited - Disabled)
gosse (S-1-5-21-2104316510-2255408751-1019769746-1002 - Administrator - Enabled) => C:\Users\gosse
Guest (S-1-5-21-2104316510-2255408751-1019769746-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2104316510-2255408751-1019769746-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.414 - Adobe)
Aiseesoft Screen Recorder 2.2.6 (HKLM-x32\...\{DD85E531-C84E-4247-B7A3-5F0C22D276DB}_is1) (Version: 2.2.6 - Aiseesoft Studio)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.11.2500 - Avast Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform)
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version: - )
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.37.5299 - GOM & Company)
Intel(R) Chipset Device Software (HKLM-x32\...\{9154f79b-8fb8-46ef-b7a6-95f136391303}) (Version: 10.1.17479.8054 - Intel(R) Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1743.4.0.1217 - Intel Corporation)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Office Professional 2019 - cs-cz (HKLM\...\Professional2019Retail - cs-cz) (Version: 16.0.14701.20262 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Minecraft 1.12.2 + Titan Launcher 3.7.0 (HKLM-x32\...\Minecraft 1.12.2 + Titan Launcher 3.7.0 1.12.2) (Version: 1.12.2 - Mojang)
Mp3tag v3.04a (HKLM-x32\...\Mp3tag) (Version: 3.04a - Florian Heidenreich)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20248 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Opera Stable 82.0.4227.43 (HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\Opera 82.0.4227.43) (Version: 82.0.4227.43 - Opera Software)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Stronghold Crusader (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: - )
Ulož.to FileManager 2.84 (64-bit) (HKLM\...\3f2e2cd28b0e4e4396c2402fbc85a0f0_is1) (Version: 2.84 - Uloz.to cloud a.s.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Video Thumbnails Maker 12.1.0.2 (HKLM-x32\...\Video Thumbnails Maker_is1) (Version: 12.1.0.2 - lrepacks.ru)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.249.0_x64__rz1tebttyb220 [2019-01-06] (Dolby Laboratories)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.0.50.0_x64__5grkq8ppsgwt4 [2018-12-01] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Movie Maker 10 - Tell Your Story -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_2.7.18.0_x64__bzg06mxvgh4fa [2019-02-07] (V3TApps) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11231.20182.0_x64__8wekyb3d8bbwe [2019-02-26] (Microsoft Corporation) [MS Ad]
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.9516.0_x86__m916jedk64snt [2018-11-22] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.1.9528.0_x86__m916jedk64snt [2018-12-21] (CYBERLINKCOM CORPORATION)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.134.0_x64__dt26b99r8h8gj [2019-01-29] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.12831.0_x64__8wekyb3d8bbwe [2018-11-21] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-11-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-11-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-01-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\gosse\AppData\Local\MEGAsync\ShellExtX64.dll [2021-03-18] (Mega Limited -> )
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-11-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-01-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-01-04 13:20 - 2021-01-04 13:20 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2021-01-04 13:20 - 2021-01-04 13:20 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-02-12%2009:16:19&bName=
SearchScopes: HKU\S-1-5-21-2104316510-2255408751-1019769746-1002 -> DefaultScope {D79E7F29-367D-4248-8EAB-E55B86AA32F2} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 14:46 - 2019-01-04 22:41 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2021-11-30 17:19 - 2021-11-30 17:35 - 000000510 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
2.168.137.10 realme-8.mshome.net # 2021 12 2 7 16 20 51 483
83

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\gosse\Desktop\rika-mari-3.jpg
DNS Servers: 192.168.88.1 - 91.103.164.7
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2104316510-2255408751-1019769746-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B24BC641-EFFF-47C3-8129-A0B753B44260}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{134B8A5C-E4E8-4BBE-AEBD-69486E317BFF}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{5734DCA0-7D67-4740-964E-B70F5DDEC0D2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{899F0518-4975-4CF0-84D6-DA109C3DBCE6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{21793987-947A-4BF0-90A8-E11B28F7E41D}] => (Allow) C:\Users\gosse\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{DBA4C8A2-643A-4FA8-B470-F6E22C5EC1E8}] => (Allow) C:\Users\gosse\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{A069D807-ED1E-4FCB-9904-FDD5E915F1EB}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{93CC71F7-FCBD-4A4D-AB9A-D1C6B6D78C88}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{A76119B8-A244-49AD-9480-5B4E131A6254}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8FF84506-3138-4E6B-8C4B-90A2AEF346ED}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A6208842-A8DE-4E8C-925F-66EB8DAFE272}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E93A41B5-99BF-41EB-A522-3E97D8E9A02F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3F4FC7B4-BEDA-4BDF-A36A-79B97F6E1582}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{60026979-1F51-4FCA-8F22-05622B9393EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FDA1D60F-0973-400A-A09D-3BC0F2EBBA71}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4B8DDDE0-2540-4CC3-98DD-B48A9C79F959}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DD75EE5F-A88C-4370-83EE-820EC348C8C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{37E1CC9B-54BD-42D8-8F63-B4F31720D4E8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{511E0B8F-4CF6-4D3C-AF24-E0514C416CD7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B3422E3-C118-41BE-958D-1913143CEFA2}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{FABF5E2F-4D1A-483C-9F2C-95FBECF545BA}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{52ECC519-AC3C-470B-9AB4-ED05E4500C8C}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{AD664B5D-3EFA-41CB-B559-BEFCC604EDB5}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D41FDE03-D1C9-4B42-96FB-BAC6680379A9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A629AEA0-04A5-4B32-BC8F-BA9C1DCB9CC3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3F911FE5-3194-431A-9A7B-C622E67A285A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2CCFA754-A8FD-488A-9F11-0190090321EB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

29-12-2021 10:02:45 Naplánovaný kontrolní bod
06-01-2022 11:33:41 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/13/2022 12:07:51 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BDPBB4VM)
Description: httphttp-2147467263

Error: (01/13/2022 12:00:30 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BDPBB4VM)
Description: httphttp-2147467263

Error: (01/13/2022 11:56:38 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BDPBB4VM)
Description: httphttp-2147467263

Error: (01/12/2022 01:08:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3890

Error: (01/12/2022 01:08:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3890

Error: (01/12/2022 01:08:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/12/2022 01:08:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1640

Error: (01/12/2022 01:08:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1640


System errors:
=============
Error: (01/13/2022 12:13:42 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-BDPBB4VM)
Description: Server {4BD3E4E1-7BD4-4A2B-9964-496400DE5193} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/13/2022 12:07:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/13/2022 12:07:51 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BDPBB4VM)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli LAPTOP-BDPBB4VM\gosse (SID: S-1-5-21-2104316510-2255408751-1019769746-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/13/2022 12:01:14 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime přestala během spouštění reagovat.

Error: (01/13/2022 12:00:37 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BDPBB4VM)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli LAPTOP-BDPBB4VM\gosse (SID: S-1-5-21-2104316510-2255408751-1019769746-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/13/2022 12:00:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/13/2022 11:58:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (01/13/2022 11:56:49 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
================Event[0]:

Date: 2022-01-06 10:31:14.089
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.355.1485.0
Předchozí verze podpisu: 1.315.487.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.18800.4
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2022-01-06 10:31:14.089
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.355.1485.0
Předchozí verze podpisu: 1.315.487.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.18800.4
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2022-01-06 10:31:14.089
Description:
Program Antivirová ochrana v programu Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18800.4
Předchozí verze modulu: 1.1.17000.7
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2021-12-10 09:13:38.915
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.355.19.0
Předchozí verze podpisu: 1.315.487.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.18800.4
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2021-12-10 09:13:38.915
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.355.19.0
Předchozí verze podpisu: 1.315.487.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.18800.4
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: LENOVO 7XCN20WW 04/09/2018
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Celeron(R) N4000 CPU @ 1.10GHz
Percentage of memory in use: 51%
Total physical RAM: 3918.57 MB
Available physical RAM: 1913.77 MB
Total Virtual: 5390.57 MB
Available Virtual: 3319.99 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:464.51 GB) (Free:154.91 GB) NTFS

\\?\Volume{05e8e859-b28d-4a2f-b602-39a2f2c2844e}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.58 GB) NTFS
\\?\Volume{33eac80b-25d8-4eea-aac4-09555b743362}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: E2101CD7)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Kontrola NTB

#2 Příspěvek od JaRon »

ahoj,
najdi a ZMAZ subor C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat
+
zislo by sa zaktualizovat system :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět