Ahoj, dobry den, prosim o kontrolu logu. Pritelkyne pocitac ma problem s jakoukoliv cinnosti na internetu (stahovani dat...) vse je velmi pomale. Predem diky za pomoc!
frst log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by ala (administrator) on DESKTOP-O0BRIV9 (Dell Inc. Inspiron 3780) (25-12-2020 22:19:43)
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\bccavsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files\AVG\Antivirus\bcc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Rivet Networks LLC -> DELL) C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [156808 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [5160760 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ala\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\Installer\chrmstp.exe [2020-12-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07AAAD4F-DA0D-4542-8E26-2CFB17A24C98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {21C2A005-54F9-4FB7-9958-A8646648A1BD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2758423A-D691-4F90-AF43-EB67BC063F1B} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059336 2020-12-04] (Dell Inc -> Dell Inc.)
Task: {29D5A5BC-5371-4074-8859-AE64252B5BC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C770C40-4AF4-4E0E-BDD0-16CC9ACB222D} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [95072 2020-08-14] (Rivet Networks LLC -> DELL)
Task: {43C4DD4C-4C95-41C2-945E-8A5F2C6961AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {56DE5CEA-A53D-4F83-8043-2F6FAE2F295B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {61001762-2D18-4A6A-8D70-99B81D3F6A32} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6B029546-AA10-4FF6-8400-F2E486258FA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DF710D-5E29-4225-B530-BBD71DFE8D0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {94C2C7D3-B58A-4FE1-A1C4-3C08D889146E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C23A1732-1103-4F50-A505-5641BDDA85E4} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D03391D7-4210-4CF1-86E8-DE6431BED95F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {DF26CE9E-C3D5-4C74-93C8-43FBFEE216A4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {ED3F1085-7ACA-4EA3-83E1-C4DD8DC0A316} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EEB136A7-0B86-4549-B40E-B5430757A59B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {FA857791-1974-4587-A8CD-92C2CD846F13} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{722c7352-e06c-4049-9082-3f02fe44d264}: [DhcpNameServer] 147.230.16.240 147.230.16.140
Tcpip\..\Interfaces\{a803e742-f451-432a-832f-6503d089d08b}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c765404f-c0d1-4425-a6f6-c81c65e93023}: [DhcpNameServer] 147.230.16.140 147.230.16.1
Tcpip\..\Interfaces\{e272aa39-2491-49aa-abe3-f3ad975f619e}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
======
Edge Notifications: HKU\S-1-5-21-3139865290-4020562401-507065138-1001 -> hxxps://www.reflex.cz
Edge DefaultProfile: Default
Edge Profile: C:\Users\ala\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-21]
FireFox:
========
FF DefaultProfile: 9eb1quei.default
FF ProfilePath: C:\Users\ala\AppData\Roaming\Zotero\Zotero\Profiles\9eb1quei.default [2020-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default [2020-12-25]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.reflex.cz
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Dokumenty) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Disk Google) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (Seznam doplněk - Email) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-12-11]
CHR Extension: (YouTube) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-24]
CHR Extension: (Zotero Connector) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2020-12-24]
CHR Extension: (Tabulky) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-24]
CHR Extension: (Save to Facebook) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-02-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-11]
CHR HKU\S-1-5-21-3139865290-4020562401-507065138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [358432 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Business Console Client Antivirus Service; C:\Program Files\AVG\Antivirus\bccavsvc.exe [3862664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientService.exe [71104 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgBcc; C:\Program Files\AVG\Antivirus\bcc.exe [1279416 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7871424 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\elevation_service.exe [1409224 2020-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482680 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2020-08-18] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2020-12-11] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [293528 2018-10-20] (Dell Inc -> Dell Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2020-10-29] (Dell Inc -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [64848 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64856 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1630576 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2385256 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2020-12-04] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdisk.sys [160384 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24952 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74048 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2020-12-25 22:20 - 000000000 ____D C:\FRST
2020-12-16 10:13 - 2020-12-16 10:13 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-12-15 10:29 - 2020-12-15 10:29 - 001239586 _____ C:\Users\ala\Downloads\0418TR.PDF
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-14 08:13 - 2020-12-14 08:13 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-07 13:41 - 2020-12-07 13:41 - 000024952 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2020-12-07 13:20 - 2020-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-12-07 13:18 - 2020-12-07 13:18 - 000003068 _____ C:\WINDOWS\system32\Tasks\SmartByte Telemetry
2020-12-07 13:18 - 2020-12-07 13:18 - 000000000 ____D C:\Program Files\Rivet Networks
2020-12-07 13:17 - 2020-12-07 13:17 - 000000000 ____D C:\WINDOWS\{4AD4E1A9-DEDE-4B9F-A864-284E82E97C2D}
2020-12-07 13:14 - 2020-12-07 13:15 - 000000000 ____D C:\ProgramData\Temp
2020-12-07 13:14 - 2020-12-07 13:14 - 000000000 ____D C:\WINDOWS\{E78AC032-4356-4C1D-820A-951B0B5EABF6}
2020-12-03 14:21 - 2020-12-11 10:37 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-12-02 16:10 - 2020-12-02 16:10 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-02 16:10 - 2020-12-02 16:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-12-02 16:10 - 2020-12-02 16:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-12-02 10:40 - 2020-12-02 10:41 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (2).pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products.pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products (1).pdf
2020-11-26 12:06 - 2020-11-26 12:06 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-25 22:13 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\AppData\Roaming\Seznam.cz
2020-12-25 22:12 - 2020-11-21 13:31 - 000000000 ____D C:\Program Files\CCleaner
2020-12-25 22:10 - 2020-10-08 16:30 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{30B6437D-C228-47AE-A365-8751C0F946E4}
2020-12-25 22:08 - 2019-07-01 02:55 - 000000000 ___RD C:\Users\ala\OneDrive
2020-12-25 22:07 - 2019-07-01 02:53 - 000000000 __SHD C:\Users\ala\IntelGraphicsProfiles
2020-12-25 22:07 - 2019-05-16 09:59 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-12-24 21:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-24 21:16 - 2020-10-08 16:30 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-24 21:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-12-24 20:20 - 2020-10-08 16:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-24 17:20 - 2020-10-08 16:30 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-24 17:20 - 2019-12-07 15:41 - 000719302 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-24 17:20 - 2019-12-07 15:41 - 000145428 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-24 17:19 - 2020-11-21 13:31 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-24 17:16 - 2020-10-08 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-24 17:16 - 2020-10-08 16:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-24 17:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-24 17:15 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-24 10:06 - 2020-10-08 16:22 - 000000000 ____D C:\Users\ala
2020-12-21 20:13 - 2020-08-22 07:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-18 07:52 - 2020-11-21 13:36 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:36 - 000002354 _____ C:\ProgramData\Plocha\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:33 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-12-16 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-16 10:12 - 2019-07-08 08:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-12-14 11:06 - 2019-07-01 02:53 - 000000000 ____D C:\Users\ala\AppData\Local\Packages
2020-12-14 09:15 - 2020-08-09 16:28 - 000000000 ____D C:\Users\ala\AppData\Local\CrashDumps
2020-12-14 08:26 - 2019-05-16 09:55 - 000000000 ____D C:\ProgramData\PCDr
2020-12-14 08:24 - 2020-10-08 16:19 - 000365784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 11:34 - 2020-01-18 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-12-11 11:33 - 2019-05-16 10:05 - 000000000 ____D C:\ProgramData\Dell
2020-12-11 11:27 - 2020-10-08 16:30 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2020-12-11 10:47 - 2019-07-08 09:34 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-11 10:21 - 2020-09-14 13:56 - 000000000 ____D C:\Users\ala\AppData\Roaming\qBittorrent
2020-12-08 10:10 - 2020-10-08 16:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3139865290-4020562401-507065138-1001
2020-12-08 10:10 - 2020-10-08 16:22 - 000002357 _____ C:\Users\ala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-07 13:39 - 2019-05-16 09:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-07 13:24 - 2019-07-29 07:42 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-07 13:23 - 2019-05-16 09:54 - 000000000 ____D C:\Program Files\Intel
2020-12-07 13:21 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-12-07 13:19 - 2019-05-16 09:57 - 000000000 ____D C:\ProgramData\Intel
2020-12-07 13:19 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-07 13:15 - 2019-05-16 09:55 - 000000000 ____D C:\Program Files\Dell
2020-12-07 10:09 - 2020-10-08 16:30 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-07 10:09 - 2020-10-08 16:30 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 16:10 - 2020-08-03 10:17 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000160384 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdisk.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-12-02 16:10 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:01 - 2020-11-05 10:18 - 000001989 _____ C:\ProgramData\Plocha\AVG Business Security.lnk
2020-12-02 12:01 - 2020-08-03 10:19 - 000002001 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Business Security.lnk
2020-12-02 11:35 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Roaming\WhatsApp
2020-12-02 11:09 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Local\WhatsApp
2020-12-01 23:28 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\Zotero
2020-12-01 10:40 - 2019-07-01 10:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-01 10:40 - 2019-07-01 10:23 - 000000000 ____D C:\Users\ala\AppData\Local\PlaceholderTileLogoFolder
2020-12-01 10:39 - 2019-07-01 10:32 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-30 09:32 - 2020-10-08 16:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 09:32 - 2020-10-08 16:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2019-07-31 07:54 - 2019-07-31 07:54 - 060465450 _____ () C:\Program Files (x86)\GraphPad_Prism_8.0.1.244.zip
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (25-12-2020 22:21:19)
Running from C:\Users\ala\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-10-08 15:30:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3139865290-4020562401-507065138-500 - Administrator - Disabled)
ala (S-1-5-21-3139865290-4020562401-507065138-1001 - Administrator - Enabled) => C:\Users\ala
DefaultAccount (S-1-5-21-3139865290-4020562401-507065138-503 - Limited - Disabled)
Guest (S-1-5-21-3139865290-4020562401-507065138-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3139865290-4020562401-507065138-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.08 - Advanced Micro Devices, Inc.)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 87.0.7479.91 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CGS15_IPM_T2 (HKLM-x32\...\{05D18A0F-ED9D-4FBD-9BF5-AF632EB09CB3}) (Version: 15.0 - Corel Corporation) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.8.03036 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{111CF284-F3AF-46A8-96FC-491E5E05AB72}) (Version: 4.8.03036 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.0.515 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (HKLM-x32\...\{356658C7-8C60-4A43-AF50-75CA8E642934}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (HKLM-x32\...\{938C2383-A692-4D2C-AE45-024F91EF7B1D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SU (HKLM-x32\...\{DB566C0C-FC66-4CB2-BD34-DC4C4064487E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SV (HKLM-x32\...\{442A8A49-FD74-4B16-9617-AD958F332677}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (HKLM\...\{69ADE77E-8D0F-4FD9-8F4A-37BA2CCC011E}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{368FCA18-C510-4F87-B60E-192B9BDBAE3D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.)
Dell Power Manager Service (HKLM\...\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}) (Version: 3.7.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\{684820E8-F6AA-4162-A547-317DA6BED1FB}) (Version: 3.8.0.108 - Dell Inc.)
Dell SupportAssist Remediation (HKLM\...\{03C35F56-A9AD-4B59-B061-B8CE41C4C22B}) (Version: 4.1.0.6830 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{3C4F6923-3BE1-4E6C-8DEE-9EEF1E433795}) (Version: 5.2.1.12926 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{8d32f870-d6fd-4420-b5cb-c29ac65f628d}) (Version: 5.2.1.12926 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{41D2D254-D869-4CD8-B440-5DF49083C4BA}) (Version: 4.0.0 - Dell, Inc.)
Fotor 3.4.1 (HKLM-x32\...\Fotor) (Version: 3.4.1 - Everimaging Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\GrammarlyForWindows) (Version: 1.5.57 - Grammarly)
GraphPad Prism 8.0.2.263 (HKLM\...\{A19AE29D-4454-4B51-B818-C612E2635E7A}) (Version: 8.2.263 - GraphPad Software Inc.)
Image Resizer for Windows (64 bit) (HKLM\...\{6026BD89-5CCA-4A47-8012-08FDA0EF935A}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{0903AF19-2041-4EBB-81CB-7A1506EC9868}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{e798dcc8-a5a5-424e-9f9a-8148e824ab13}) (Version: 3.1.2.0 - Brice Lambson)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.3.1026 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{5EEB8181-5D0C-4913-A61F-00DCB6CBAF63}) (Version: 17.5.3.1026 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{EF00A575-F9E8-8989-1957-B80B06DB06A9}) (Version: 1.00.1. - AMD) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10518 - Qualcomm)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\SeznamInstall) (Version: 2.1.35 - Seznam.cz)
SmartByte Drivers and Services (HKLM\...\{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 - Název společnosti:)
WhatsApp (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\WhatsApp) (Version: 2.2047.12 - WhatsApp)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zotero (HKLM-x32\...\Zotero 5.0.72 (x86 en-US)) (Version: 5.0.72 - Corporation for Digital Scholarship)
Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-07-01] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.48.2.0_x86__kgqvnymyfvs32 [2020-11-28] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1910.3.0_x86__kgqvnymyfvs32 [2020-12-04] (king.com)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.2.22.0_x64__2dgmkzkw4h30c [2020-09-18] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-21] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-05-29] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0 [2020-12-09] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.7.10.0_x64__htrsf667h5kn2 [2020-10-07] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.8.8.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.0.33.0_x86__htrsf667h5kn2 [2020-12-07] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-19] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-19] (Dropbox Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-28] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-18] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-01] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.54.0_x64__wafk5atnkzcwy [2020-12-03] (McAfee LLC.)
Media Suite Essentials for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-29] (CYBERLINK CORPORATION.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_810.6.118.0_x64__8xx8rvfyw5nnt [2020-12-11] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.7.25.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-13] (INTEL CORP) [Startup Task]
Power Media Player for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-07-02] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-14] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2019-07-01] (CYBERLINK CORPORATION.)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-15] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2019-07-01] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2019-12-23] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\ala\Favorites\Fotor for desktop.lnk -> hxxp://www.fotor.com/windows/review.htm
==================== Loaded Modules (Whitelisted) =============
2020-04-09 19:11 - 2020-04-09 19:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000114176 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ctypes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000172544 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_elementtree.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002255872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_hashlib.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000032256 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_multiprocessing.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000046080 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_psutil_windows.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000047616 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_socket.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002824704 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ssl.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026112 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_yappi.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000080896 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\bz2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000016384 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\common.time34.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000007680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\hashobjs_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000301568 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\PIL._imaging.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000168448 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pyexpat.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001084416 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pysqlite2._sqlite.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000548864 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pythoncom27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137728 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pywintypes27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000010752 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\select.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\thumbnails_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000689664 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\unicodedata.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000119808 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\usb_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000128512 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32api.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000438784 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32com.shell.shell.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000011776 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32crypt.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000023040 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32event.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000149504 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32file.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000223232 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32gui.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000048128 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32inet.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000029696 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pdh.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000027648 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pipe.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000044032 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32process.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32profile.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000136192 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32security.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026624 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32ts.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000034816 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.conditional.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000038400 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.connectivity.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000071680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.device_monitor.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000109056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.volumes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.winwrap.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001325056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._controls_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001489408 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._core_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001007104 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._gdi_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000103424 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._html2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000916992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._misc_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001039872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._windows_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\python27.dll
2020-08-14 21:29 - 2020-08-14 21:29 - 000122880 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2020-12-01 00:14 - 2020-12-01 00:14 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-09 10:51 - 2020-12-09 10:54 - 008830976 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\core.uwp.dll
2020-12-09 10:51 - 2020-12-09 10:55 - 045847552 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_net_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_adv_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_core_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_html_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\sharepoint.com -> hxxps://tulib-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ala\OneDrive\Plocha\Jarda\vojta ČL\Vialkove testy\Vialky 02 - pokracovani\EMS\10um\_5 lac.tif
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3BFAE4B9-3D89-4375-9E6D-3FFD2C8FD63B}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{89722988-003D-4409-94E2-398DCFEB278F}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{853F7D17-7C1C-4ACC-95B7-521D6822DD2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11929.20300.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2B1B235-C33F-470B-859A-6CDBEB7264EE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E20EF49A-EFB9-43B2-9C6E-6D22BD48985E}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{EED9ECC6-1B3A-4C97-8709-5CFD71BC5F0A}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{3D1DB1F0-EC49-4BAC-A059-4E2F121C2756}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2F0409A0-FC28-446A-B9C4-20ED864848FA}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0CE1FB46-F357-4500-9E8F-40090AF19687}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9BC2930F-E309-4124-BFE8-5E9088BCDBAF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39CD304A-9F17-40AD-BB73-2FF20ED25EE9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{989065EF-69BF-4F8B-9375-C349197B7EB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27FA24E-505C-4EF9-B17A-02031CEE4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{413B178D-9564-4A38-AFD1-5524D389E8A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9CF9AF65-850D-49DC-BD49-D30EA3FD5C82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{56298E8A-033B-44A4-BB85-46A9F69AFA2A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AC08E5C-3F3F-42A8-820F-CD9DBAEFAF67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1982F62C-BAE4-4A6C-A778-D1435E0B704E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{2E3B7024-966F-4E07-BAA4-C715E3030359}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{30260A38-43BA-47E9-A29C-3133723975CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{20F2126B-EE00-4F15-B5D7-0708051E9FFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F241DC98-9BAA-48D4-8AF8-B0C7A764019F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE4BBD5C-BED4-4B35-9190-B0EDB955DB3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96ECD631-B698-4ACF-82D9-64A60FF5C0CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F999DAC1-DE05-4523-94F0-9A8C7113678A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{131B172D-2BCF-4775-95E9-FB1163744521}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0945FBFD-D22F-4094-876B-A7945BC63EF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0305DFE0-68C8-4D71-96A0-AC19B98B06D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD11540F-E797-4386-9B91-45A91676CF2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6459EE6D-B43C-4C26-B97F-96948D9CF8C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B0EB2E-927D-4474-9CAD-8F37A7861985}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F05F122-B967-4C49-BE64-24293A6A042C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:103.81 GB) (Free:47.79 GB) (46%)
==================== Faulty Device Manager Devices ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2020 10:09:28 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:16:39 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 05:18:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 04:54:30 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 10:09:11 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:53:31 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/21/2020 08:11:35 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/20/2020 08:45:34 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (12/25/2020 10:21:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===================================
Date: 2020-12-25 22:17:43.0180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:40.2750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8400000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8120000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:38.7630000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.11.0 06/03/2020
Motherboard: Dell Inc. 0PKJX9
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 71%
Total physical RAM: 8068.39 MB
Available physical RAM: 2335.55 MB
Total Virtual: 12676.39 MB
Available Virtual: 5592.57 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:103.81 GB) (Free:47.78 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:883.76 GB) NTFS
\\?\Volume{5e932c26-bcbe-452d-9f32-a72913bff296}\ () (Fixed) (Total:0.79 GB) (Free:0.1 GB) NTFS
\\?\Volume{c3ae85ae-260e-4f51-b2e2-eae918345159}\ (Image) (Fixed) (Total:12.63 GB) (Free:0.17 GB) NTFS
\\?\Volume{2cd1376c-338f-4fcb-a5a9-8f12d8636ba8}\ (DELLSUPPORT) (Fixed) (Total:1.14 GB) (Free:0.55 GB) NTFS
\\?\Volume{83ea36af-1d57-43bc-a0e6-512b11f13703}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.65 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4ACDDEFA)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 4ACDD678)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
extremne zpomaleny internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: extremne zpomaleny internet
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
Re: extremne zpomaleny internet
funkci clean and repair jsme nejak nenasli, nicmene program vytvoril log zde:
-------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 12-26-2020
# Duration: 00:00:16
# OS: Windows 10 Home
# Scanned: 31930
# Detected: 36
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Seznam.cz C:\Program Files (x86)\Seznam.cz
PUP.Optional.Seznam.cz C:\Users\ala\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Conduit HKLM\Software\Wow6432Node\Conduit
PUP.Optional.InstallCore HKCU\Software\csastats
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
PUP.Optional.Seznam.cz HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
PUP.Optional.Seznam.cz HKCU\Software\Seznam.cz
PUP.Optional.Seznam.cz HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
***** [ Chromium (and derivatives) ] *****
Adware.Mindspark kpocjpoifmommoiiiamepombpeoaehfh
PUP.Optional.MindSpark kpocjpoifmommoiiiamepombpeoaehfh
PUP.Optional.Seznam.cz Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.DellCommand|PowerManager Folder C:\Program Files\DELL\COMMANDPOWERMANAGER
Preinstalled.DellCommand|PowerManager Folder C:\ProgramData\DELL\COMMANDPOWERMANAGER
Preinstalled.DellCommand|PowerManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AGENT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\AGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2758423A-D691-4F90-AF43-EB67BC063F1B}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2758423A-D691-4F90-AF43-EB67BC063F1B}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Preinstalled.DellSupportAssistAgent Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{03C35F56-A9AD-4B59-B061-B8CE41C4C22B}
Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files\DELL\UPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
Preinstalled.SmartByte Folder C:\Program Files\RIVET NETWORKS
Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C770C40-4AF4-4E0E-BDD0-16CC9ACB222D}
Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartByte Telemetry
Preinstalled.SmartByte Task C:\Windows\System32\Tasks\SMARTBYTE TELEMETRY
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
-------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 12-26-2020
# Duration: 00:00:16
# OS: Windows 10 Home
# Scanned: 31930
# Detected: 36
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Seznam.cz C:\Program Files (x86)\Seznam.cz
PUP.Optional.Seznam.cz C:\Users\ala\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Conduit HKLM\Software\Wow6432Node\Conduit
PUP.Optional.InstallCore HKCU\Software\csastats
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
PUP.Optional.Seznam.cz HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
PUP.Optional.Seznam.cz HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
PUP.Optional.Seznam.cz HKCU\Software\Seznam.cz
PUP.Optional.Seznam.cz HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
***** [ Chromium (and derivatives) ] *****
Adware.Mindspark kpocjpoifmommoiiiamepombpeoaehfh
PUP.Optional.MindSpark kpocjpoifmommoiiiamepombpeoaehfh
PUP.Optional.Seznam.cz Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.DellCommand|PowerManager Folder C:\Program Files\DELL\COMMANDPOWERMANAGER
Preinstalled.DellCommand|PowerManager Folder C:\ProgramData\DELL\COMMANDPOWERMANAGER
Preinstalled.DellCommand|PowerManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AGENT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\AGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2758423A-D691-4F90-AF43-EB67BC063F1B}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2758423A-D691-4F90-AF43-EB67BC063F1B}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Preinstalled.DellSupportAssistAgent Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{03C35F56-A9AD-4B59-B061-B8CE41C4C22B}
Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files\DELL\UPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
Preinstalled.SmartByte Folder C:\Program Files\RIVET NETWORKS
Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C770C40-4AF4-4E0E-BDD0-16CC9ACB222D}
Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartByte Telemetry
Preinstalled.SmartByte Task C:\Windows\System32\Tasks\SMARTBYTE TELEMETRY
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: extremne zpomaleny internet
Přesvědčte se, zda položky byly přesunuty do karantény, případně je tam přesuňte (tlačítko karanténa vlevo). Pak dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
Re: extremne zpomaleny internet
nové addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (26-12-2020 17:58:39)
Running from C:\Users\ala\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-10-08 15:30:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3139865290-4020562401-507065138-500 - Administrator - Disabled)
ala (S-1-5-21-3139865290-4020562401-507065138-1001 - Administrator - Enabled) => C:\Users\ala
DefaultAccount (S-1-5-21-3139865290-4020562401-507065138-503 - Limited - Disabled)
Guest (S-1-5-21-3139865290-4020562401-507065138-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3139865290-4020562401-507065138-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.08 - Advanced Micro Devices, Inc.)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 87.0.7479.91 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CGS15_IPM_T2 (HKLM-x32\...\{05D18A0F-ED9D-4FBD-9BF5-AF632EB09CB3}) (Version: 15.0 - Corel Corporation) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.8.03036 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{111CF284-F3AF-46A8-96FC-491E5E05AB72}) (Version: 4.8.03036 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.0.515 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (HKLM-x32\...\{356658C7-8C60-4A43-AF50-75CA8E642934}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (HKLM-x32\...\{938C2383-A692-4D2C-AE45-024F91EF7B1D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SU (HKLM-x32\...\{DB566C0C-FC66-4CB2-BD34-DC4C4064487E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SV (HKLM-x32\...\{442A8A49-FD74-4B16-9617-AD958F332677}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (HKLM\...\{69ADE77E-8D0F-4FD9-8F4A-37BA2CCC011E}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{368FCA18-C510-4F87-B60E-192B9BDBAE3D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.)
Dell SupportAssist (HKLM\...\{684820E8-F6AA-4162-A547-317DA6BED1FB}) (Version: 3.8.0.108 - Dell Inc.)
Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{3C4F6923-3BE1-4E6C-8DEE-9EEF1E433795}) (Version: 5.2.1.12926 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{8d32f870-d6fd-4420-b5cb-c29ac65f628d}) (Version: 5.2.1.12926 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{41D2D254-D869-4CD8-B440-5DF49083C4BA}) (Version: 4.0.0 - Dell, Inc.)
Fotor 3.4.1 (HKLM-x32\...\Fotor) (Version: 3.4.1 - Everimaging Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\GrammarlyForWindows) (Version: 1.5.57 - Grammarly)
GraphPad Prism 8.0.2.263 (HKLM\...\{A19AE29D-4454-4B51-B818-C612E2635E7A}) (Version: 8.2.263 - GraphPad Software Inc.)
Image Resizer for Windows (64 bit) (HKLM\...\{6026BD89-5CCA-4A47-8012-08FDA0EF935A}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{0903AF19-2041-4EBB-81CB-7A1506EC9868}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{e798dcc8-a5a5-424e-9f9a-8148e824ab13}) (Version: 3.1.2.0 - Brice Lambson)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.3.1026 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{5EEB8181-5D0C-4913-A61F-00DCB6CBAF63}) (Version: 17.5.3.1026 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{EF00A575-F9E8-8989-1957-B80B06DB06A9}) (Version: 1.00.1. - AMD) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10518 - Qualcomm)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.)
SmartByte Drivers and Services (HKLM\...\{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 - Název společnosti:)
WhatsApp (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\WhatsApp) (Version: 2.2047.12 - WhatsApp)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zotero (HKLM-x32\...\Zotero 5.0.72 (x86 en-US)) (Version: 5.0.72 - Corporation for Digital Scholarship)
Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-07-01] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.48.2.0_x86__kgqvnymyfvs32 [2020-11-28] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1910.3.0_x86__kgqvnymyfvs32 [2020-12-04] (king.com)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.2.22.0_x64__2dgmkzkw4h30c [2020-09-18] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-21] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-05-29] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0 [2020-12-09] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.7.10.0_x64__htrsf667h5kn2 [2020-10-07] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.8.8.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.0.33.0_x86__htrsf667h5kn2 [2020-12-07] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-19] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-19] (Dropbox Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-28] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-18] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-01] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.54.0_x64__wafk5atnkzcwy [2020-12-03] (McAfee LLC.)
Media Suite Essentials for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-29] (CYBERLINK CORPORATION.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_810.6.118.0_x64__8xx8rvfyw5nnt [2020-12-11] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.7.25.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-13] (INTEL CORP) [Startup Task]
Power Media Player for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-07-02] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-14] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2019-07-01] (CYBERLINK CORPORATION.)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-15] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2019-07-01] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2019-12-23] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\ala\Favorites\Fotor for desktop.lnk -> hxxp://www.fotor.com/windows/review.htm
==================== Loaded Modules (Whitelisted) =============
2020-04-09 19:11 - 2020-04-09 19:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000114176 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_ctypes.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000172544 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_elementtree.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 002255872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_hashlib.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000032256 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_multiprocessing.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000046080 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_psutil_windows.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000047616 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_socket.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 002824704 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_ssl.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000026112 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_yappi.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000080896 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\bz2.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000016384 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\common.time34.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000007680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\hashobjs_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000301568 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\PIL._imaging.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000168448 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pyexpat.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001084416 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pysqlite2._sqlite.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000548864 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pythoncom27.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000137728 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pywintypes27.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000010752 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\select.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\thumbnails_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000689664 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\unicodedata.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000119808 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\usb_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000128512 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32api.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000438784 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32com.shell.shell.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000011776 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32crypt.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000023040 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32event.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000149504 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32file.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000223232 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32gui.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000048128 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32inet.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000029696 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32pdh.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000027648 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32pipe.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000044032 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32process.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32profile.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000136192 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32security.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000026624 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32ts.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000034816 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.conditional.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000038400 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.connectivity.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000071680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.device_monitor.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000109056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.volumes.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.winwrap.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001325056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._controls_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001489408 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._core_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001007104 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._gdi_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000103424 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._html2.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000916992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._misc_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001039872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._windows_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\python27.dll
2020-12-01 00:14 - 2020-12-01 00:14 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-09 10:51 - 2020-12-09 10:54 - 008830976 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\core.uwp.dll
2020-12-09 10:51 - 2020-12-09 10:55 - 045847552 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxbase30u_net_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxbase30u_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_adv_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_core_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_html_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\sharepoint.com -> hxxps://tulib-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ala\OneDrive\Plocha\Jarda\vojta ČL\Vialkove testy\Vialky 02 - pokracovani\EMS\10um\_5 lac.tif
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3BFAE4B9-3D89-4375-9E6D-3FFD2C8FD63B}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{89722988-003D-4409-94E2-398DCFEB278F}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{853F7D17-7C1C-4ACC-95B7-521D6822DD2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11929.20300.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2B1B235-C33F-470B-859A-6CDBEB7264EE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E20EF49A-EFB9-43B2-9C6E-6D22BD48985E}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{EED9ECC6-1B3A-4C97-8709-5CFD71BC5F0A}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{3D1DB1F0-EC49-4BAC-A059-4E2F121C2756}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2F0409A0-FC28-446A-B9C4-20ED864848FA}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0CE1FB46-F357-4500-9E8F-40090AF19687}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9BC2930F-E309-4124-BFE8-5E9088BCDBAF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39CD304A-9F17-40AD-BB73-2FF20ED25EE9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{989065EF-69BF-4F8B-9375-C349197B7EB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27FA24E-505C-4EF9-B17A-02031CEE4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{413B178D-9564-4A38-AFD1-5524D389E8A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9CF9AF65-850D-49DC-BD49-D30EA3FD5C82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{56298E8A-033B-44A4-BB85-46A9F69AFA2A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AC08E5C-3F3F-42A8-820F-CD9DBAEFAF67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1982F62C-BAE4-4A6C-A778-D1435E0B704E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{2E3B7024-966F-4E07-BAA4-C715E3030359}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{30260A38-43BA-47E9-A29C-3133723975CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{20F2126B-EE00-4F15-B5D7-0708051E9FFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F241DC98-9BAA-48D4-8AF8-B0C7A764019F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE4BBD5C-BED4-4B35-9190-B0EDB955DB3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96ECD631-B698-4ACF-82D9-64A60FF5C0CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F999DAC1-DE05-4523-94F0-9A8C7113678A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{131B172D-2BCF-4775-95E9-FB1163744521}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0945FBFD-D22F-4094-876B-A7945BC63EF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0305DFE0-68C8-4D71-96A0-AC19B98B06D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD11540F-E797-4386-9B91-45A91676CF2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6459EE6D-B43C-4C26-B97F-96948D9CF8C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B0EB2E-927D-4474-9CAD-8F37A7861985}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F05F122-B967-4C49-BE64-24293A6A042C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:103.81 GB) (Free:47.72 GB) (46%)
==================== Faulty Device Manager Devices ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/26/2020 05:54:26 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/26/2020 12:13:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/26/2020 10:29:53 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/25/2020 11:06:18 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/25/2020 10:09:28 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:16:39 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 05:18:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 04:54:30 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
System errors:
=============
Error: (12/26/2020 05:59:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:59:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:59:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:55:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:55:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===================================
Date: 2020-12-26 17:56:22.9110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:55:57.7100000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:51.6890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:36.8890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:21.0930000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:11.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:07.7360000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:53:52.3260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.11.0 06/03/2020
Motherboard: Dell Inc. 0PKJX9
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 56%
Total physical RAM: 8068.39 MB
Available physical RAM: 3536.89 MB
Total Virtual: 12676.39 MB
Available Virtual: 7766 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:103.81 GB) (Free:47.72 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:883.76 GB) NTFS
\\?\Volume{5e932c26-bcbe-452d-9f32-a72913bff296}\ () (Fixed) (Total:0.79 GB) (Free:0.1 GB) NTFS
\\?\Volume{c3ae85ae-260e-4f51-b2e2-eae918345159}\ (Image) (Fixed) (Total:12.63 GB) (Free:0.17 GB) NTFS
\\?\Volume{2cd1376c-338f-4fcb-a5a9-8f12d8636ba8}\ (DELLSUPPORT) (Fixed) (Total:1.14 GB) (Free:0.55 GB) NTFS
\\?\Volume{83ea36af-1d57-43bc-a0e6-512b11f13703}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.65 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4ACDDEFA)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 4ACDD678)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (26-12-2020 17:58:39)
Running from C:\Users\ala\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-10-08 15:30:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3139865290-4020562401-507065138-500 - Administrator - Disabled)
ala (S-1-5-21-3139865290-4020562401-507065138-1001 - Administrator - Enabled) => C:\Users\ala
DefaultAccount (S-1-5-21-3139865290-4020562401-507065138-503 - Limited - Disabled)
Guest (S-1-5-21-3139865290-4020562401-507065138-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3139865290-4020562401-507065138-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.08 - Advanced Micro Devices, Inc.)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 87.0.7479.91 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CGS15_IPM_T2 (HKLM-x32\...\{05D18A0F-ED9D-4FBD-9BF5-AF632EB09CB3}) (Version: 15.0 - Corel Corporation) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.8.03036 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{111CF284-F3AF-46A8-96FC-491E5E05AB72}) (Version: 4.8.03036 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.0.515 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (HKLM-x32\...\{356658C7-8C60-4A43-AF50-75CA8E642934}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (HKLM-x32\...\{938C2383-A692-4D2C-AE45-024F91EF7B1D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SU (HKLM-x32\...\{DB566C0C-FC66-4CB2-BD34-DC4C4064487E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SV (HKLM-x32\...\{442A8A49-FD74-4B16-9617-AD958F332677}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (HKLM\...\{69ADE77E-8D0F-4FD9-8F4A-37BA2CCC011E}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{368FCA18-C510-4F87-B60E-192B9BDBAE3D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.)
Dell SupportAssist (HKLM\...\{684820E8-F6AA-4162-A547-317DA6BED1FB}) (Version: 3.8.0.108 - Dell Inc.)
Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{3C4F6923-3BE1-4E6C-8DEE-9EEF1E433795}) (Version: 5.2.1.12926 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{8d32f870-d6fd-4420-b5cb-c29ac65f628d}) (Version: 5.2.1.12926 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{41D2D254-D869-4CD8-B440-5DF49083C4BA}) (Version: 4.0.0 - Dell, Inc.)
Fotor 3.4.1 (HKLM-x32\...\Fotor) (Version: 3.4.1 - Everimaging Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\GrammarlyForWindows) (Version: 1.5.57 - Grammarly)
GraphPad Prism 8.0.2.263 (HKLM\...\{A19AE29D-4454-4B51-B818-C612E2635E7A}) (Version: 8.2.263 - GraphPad Software Inc.)
Image Resizer for Windows (64 bit) (HKLM\...\{6026BD89-5CCA-4A47-8012-08FDA0EF935A}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{0903AF19-2041-4EBB-81CB-7A1506EC9868}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{e798dcc8-a5a5-424e-9f9a-8148e824ab13}) (Version: 3.1.2.0 - Brice Lambson)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.3.1026 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{5EEB8181-5D0C-4913-A61F-00DCB6CBAF63}) (Version: 17.5.3.1026 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{EF00A575-F9E8-8989-1957-B80B06DB06A9}) (Version: 1.00.1. - AMD) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10518 - Qualcomm)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.)
SmartByte Drivers and Services (HKLM\...\{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 - Název společnosti:)
WhatsApp (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\WhatsApp) (Version: 2.2047.12 - WhatsApp)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zotero (HKLM-x32\...\Zotero 5.0.72 (x86 en-US)) (Version: 5.0.72 - Corporation for Digital Scholarship)
Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-07-01] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.48.2.0_x86__kgqvnymyfvs32 [2020-11-28] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1910.3.0_x86__kgqvnymyfvs32 [2020-12-04] (king.com)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.2.22.0_x64__2dgmkzkw4h30c [2020-09-18] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-21] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-05-29] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0 [2020-12-09] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.7.10.0_x64__htrsf667h5kn2 [2020-10-07] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.8.8.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.0.33.0_x86__htrsf667h5kn2 [2020-12-07] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-19] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-19] (Dropbox Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-28] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-18] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-01] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.54.0_x64__wafk5atnkzcwy [2020-12-03] (McAfee LLC.)
Media Suite Essentials for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-29] (CYBERLINK CORPORATION.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_810.6.118.0_x64__8xx8rvfyw5nnt [2020-12-11] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.7.25.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-13] (INTEL CORP) [Startup Task]
Power Media Player for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-07-02] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-14] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2019-07-01] (CYBERLINK CORPORATION.)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-15] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2019-07-01] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2019-12-23] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\ala\Favorites\Fotor for desktop.lnk -> hxxp://www.fotor.com/windows/review.htm
==================== Loaded Modules (Whitelisted) =============
2020-04-09 19:11 - 2020-04-09 19:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000114176 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_ctypes.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000172544 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_elementtree.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 002255872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_hashlib.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000032256 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_multiprocessing.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000046080 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_psutil_windows.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000047616 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_socket.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 002824704 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_ssl.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000026112 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\_yappi.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000080896 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\bz2.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000016384 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\common.time34.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000007680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\hashobjs_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000301568 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\PIL._imaging.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000168448 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pyexpat.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001084416 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pysqlite2._sqlite.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000548864 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pythoncom27.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000137728 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\pywintypes27.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000010752 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\select.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\thumbnails_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000689664 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\unicodedata.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000119808 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\usb_ext.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000128512 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32api.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000438784 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32com.shell.shell.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000011776 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32crypt.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000023040 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32event.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000149504 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32file.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000223232 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32gui.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000048128 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32inet.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000029696 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32pdh.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000027648 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32pipe.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000044032 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32process.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32profile.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000136192 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32security.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000026624 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\win32ts.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000034816 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.conditional.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000038400 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.connectivity.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000071680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.device_monitor.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000109056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.volumes.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\windows.winwrap.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001325056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._controls_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001489408 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._core_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001007104 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._gdi_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000103424 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._html2.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 000916992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._misc_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 001039872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wx._windows_.pyd
2020-12-26 17:53 - 2020-12-26 17:53 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\python27.dll
2020-12-01 00:14 - 2020-12-01 00:14 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-09 10:51 - 2020-12-09 10:54 - 008830976 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\core.uwp.dll
2020-12-09 10:51 - 2020-12-09 10:55 - 045847552 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxbase30u_net_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxbase30u_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_adv_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_core_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_html_vc90_x64.dll
2020-12-26 17:53 - 2020-12-26 17:53 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI78962\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\sharepoint.com -> hxxps://tulib-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ala\OneDrive\Plocha\Jarda\vojta ČL\Vialkove testy\Vialky 02 - pokracovani\EMS\10um\_5 lac.tif
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3BFAE4B9-3D89-4375-9E6D-3FFD2C8FD63B}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{89722988-003D-4409-94E2-398DCFEB278F}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{853F7D17-7C1C-4ACC-95B7-521D6822DD2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11929.20300.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2B1B235-C33F-470B-859A-6CDBEB7264EE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E20EF49A-EFB9-43B2-9C6E-6D22BD48985E}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{EED9ECC6-1B3A-4C97-8709-5CFD71BC5F0A}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{3D1DB1F0-EC49-4BAC-A059-4E2F121C2756}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2F0409A0-FC28-446A-B9C4-20ED864848FA}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0CE1FB46-F357-4500-9E8F-40090AF19687}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9BC2930F-E309-4124-BFE8-5E9088BCDBAF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39CD304A-9F17-40AD-BB73-2FF20ED25EE9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{989065EF-69BF-4F8B-9375-C349197B7EB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27FA24E-505C-4EF9-B17A-02031CEE4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{413B178D-9564-4A38-AFD1-5524D389E8A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9CF9AF65-850D-49DC-BD49-D30EA3FD5C82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{56298E8A-033B-44A4-BB85-46A9F69AFA2A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AC08E5C-3F3F-42A8-820F-CD9DBAEFAF67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1982F62C-BAE4-4A6C-A778-D1435E0B704E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{2E3B7024-966F-4E07-BAA4-C715E3030359}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{30260A38-43BA-47E9-A29C-3133723975CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{20F2126B-EE00-4F15-B5D7-0708051E9FFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F241DC98-9BAA-48D4-8AF8-B0C7A764019F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE4BBD5C-BED4-4B35-9190-B0EDB955DB3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96ECD631-B698-4ACF-82D9-64A60FF5C0CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F999DAC1-DE05-4523-94F0-9A8C7113678A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{131B172D-2BCF-4775-95E9-FB1163744521}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0945FBFD-D22F-4094-876B-A7945BC63EF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0305DFE0-68C8-4D71-96A0-AC19B98B06D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD11540F-E797-4386-9B91-45A91676CF2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6459EE6D-B43C-4C26-B97F-96948D9CF8C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B0EB2E-927D-4474-9CAD-8F37A7861985}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F05F122-B967-4C49-BE64-24293A6A042C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:103.81 GB) (Free:47.72 GB) (46%)
==================== Faulty Device Manager Devices ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/26/2020 05:54:26 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/26/2020 12:13:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/26/2020 10:29:53 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/25/2020 11:06:18 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/25/2020 10:09:28 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:16:39 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 05:18:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 04:54:30 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
System errors:
=============
Error: (12/26/2020 05:59:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:59:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:59:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:56:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:55:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/26/2020 05:55:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===================================
Date: 2020-12-26 17:56:22.9110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:55:57.7100000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:51.6890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:36.8890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:21.0930000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:11.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:54:07.7360000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-26 17:53:52.3260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.11.0 06/03/2020
Motherboard: Dell Inc. 0PKJX9
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 56%
Total physical RAM: 8068.39 MB
Available physical RAM: 3536.89 MB
Total Virtual: 12676.39 MB
Available Virtual: 7766 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:103.81 GB) (Free:47.72 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:883.76 GB) NTFS
\\?\Volume{5e932c26-bcbe-452d-9f32-a72913bff296}\ () (Fixed) (Total:0.79 GB) (Free:0.1 GB) NTFS
\\?\Volume{c3ae85ae-260e-4f51-b2e2-eae918345159}\ (Image) (Fixed) (Total:12.63 GB) (Free:0.17 GB) NTFS
\\?\Volume{2cd1376c-338f-4fcb-a5a9-8f12d8636ba8}\ (DELLSUPPORT) (Fixed) (Total:1.14 GB) (Free:0.55 GB) NTFS
\\?\Volume{83ea36af-1d57-43bc-a0e6-512b11f13703}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.65 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4ACDDEFA)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 4ACDD678)
Partition: GPT.
==================== End of Addition.txt =======================
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
Re: extremne zpomaleny internet
nové frst:
can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by ala (administrator) on DESKTOP-O0BRIV9 (Dell Inc. Inspiron 3780) (26-12-2020 17:57:06)
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\bccavsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files\AVG\Antivirus\bcc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [156808 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [5160760 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\Installer\chrmstp.exe [2020-12-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07AAAD4F-DA0D-4542-8E26-2CFB17A24C98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {21C2A005-54F9-4FB7-9958-A8646648A1BD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {29D5A5BC-5371-4074-8859-AE64252B5BC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {43C4DD4C-4C95-41C2-945E-8A5F2C6961AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {56DE5CEA-A53D-4F83-8043-2F6FAE2F295B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {61001762-2D18-4A6A-8D70-99B81D3F6A32} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6B029546-AA10-4FF6-8400-F2E486258FA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DF710D-5E29-4225-B530-BBD71DFE8D0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {94C2C7D3-B58A-4FE1-A1C4-3C08D889146E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C23A1732-1103-4F50-A505-5641BDDA85E4} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D03391D7-4210-4CF1-86E8-DE6431BED95F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {DF26CE9E-C3D5-4C74-93C8-43FBFEE216A4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {ED3F1085-7ACA-4EA3-83E1-C4DD8DC0A316} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EEB136A7-0B86-4549-B40E-B5430757A59B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {FA857791-1974-4587-A8CD-92C2CD846F13} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{722c7352-e06c-4049-9082-3f02fe44d264}: [DhcpNameServer] 147.230.16.240 147.230.16.140
Tcpip\..\Interfaces\{a803e742-f451-432a-832f-6503d089d08b}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c765404f-c0d1-4425-a6f6-c81c65e93023}: [DhcpNameServer] 147.230.16.140 147.230.16.1
Tcpip\..\Interfaces\{e272aa39-2491-49aa-abe3-f3ad975f619e}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
======
Edge Notifications: HKU\S-1-5-21-3139865290-4020562401-507065138-1001 -> hxxps://www.reflex.cz
Edge DefaultProfile: Default
Edge Profile: C:\Users\ala\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-21]
FireFox:
========
FF DefaultProfile: 9eb1quei.default
FF ProfilePath: C:\Users\ala\AppData\Roaming\Zotero\Zotero\Profiles\9eb1quei.default [2020-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default [2020-12-26]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.reflex.cz
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Dokumenty) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Disk Google) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (YouTube) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-24]
CHR Extension: (Zotero Connector) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2020-12-24]
CHR Extension: (Tabulky) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-24]
CHR Extension: (Save to Facebook) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-02-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-11]
CHR HKU\S-1-5-21-3139865290-4020562401-507065138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [358432 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Business Console Client Antivirus Service; C:\Program Files\AVG\Antivirus\bccavsvc.exe [3862664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientService.exe [71104 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgBcc; C:\Program Files\AVG\Antivirus\bcc.exe [1279416 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7871424 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\elevation_service.exe [1409224 2020-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482680 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2020-12-11] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2020-10-29] (Dell Inc -> )
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2020-12-04] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 dcpm-notify; "C:\Program Files\Dell\CommandPowerManager\NotifyService.exe" [X]
S2 Dell SupportAssist Remediation; "C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe" [X]
S2 RAPSService; "C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe" [X]
S3 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X]
S2 SmartByte Analytics Service; "C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe" [X]
S2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdisk.sys [160384 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24952 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R4 DBUtil_2_3; C:\WINDOWS\TEMP\DBUtil_2_3.Sys [14840 2020-12-26] (Dell Inc. -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74048 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-26 17:53 - 2020-12-26 17:53 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (3).exe
2020-12-26 11:58 - 2020-12-26 11:58 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (2).exe
2020-12-26 11:56 - 2020-12-26 11:56 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (1).exe
2020-12-26 11:54 - 2020-12-26 17:49 - 000000000 ____D C:\AdwCleaner
2020-12-26 11:53 - 2020-12-26 11:53 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner.exe
2020-12-25 22:19 - 2020-12-26 17:57 - 000000000 ____D C:\FRST
2020-12-16 10:13 - 2020-12-16 10:13 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-12-15 10:29 - 2020-12-15 10:29 - 001239586 _____ C:\Users\ala\Downloads\0418TR.PDF
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-14 08:13 - 2020-12-14 08:13 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-07 13:41 - 2020-12-07 13:41 - 000024952 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2020-12-07 13:20 - 2020-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-12-07 13:17 - 2020-12-07 13:17 - 000000000 ____D C:\WINDOWS\{4AD4E1A9-DEDE-4B9F-A864-284E82E97C2D}
2020-12-07 13:14 - 2020-12-07 13:15 - 000000000 ____D C:\ProgramData\Temp
2020-12-07 13:14 - 2020-12-07 13:14 - 000000000 ____D C:\WINDOWS\{E78AC032-4356-4C1D-820A-951B0B5EABF6}
2020-12-03 14:21 - 2020-12-11 10:37 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-12-02 16:10 - 2020-12-02 16:10 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-02 16:10 - 2020-12-02 16:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-12-02 16:10 - 2020-12-02 16:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-12-02 10:40 - 2020-12-02 10:41 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (2).pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products.pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products (1).pdf
2020-11-26 12:06 - 2020-11-26 12:06 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-26 17:55 - 2020-10-08 16:30 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-26 17:55 - 2019-12-07 15:41 - 000719302 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-26 17:55 - 2019-12-07 15:41 - 000145428 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-26 17:55 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-26 17:53 - 2020-11-21 13:31 - 000000000 ____D C:\Program Files\CCleaner
2020-12-26 17:53 - 2019-07-01 02:55 - 000000000 ___RD C:\Users\ala\OneDrive
2020-12-26 17:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-26 17:52 - 2019-07-01 02:53 - 000000000 __SHD C:\Users\ala\IntelGraphicsProfiles
2020-12-26 17:52 - 2019-05-16 09:59 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-12-26 17:50 - 2020-10-08 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-26 17:50 - 2020-10-08 16:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-26 17:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-26 17:50 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-26 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-12-26 17:49 - 2019-05-16 10:05 - 000000000 ____D C:\ProgramData\Dell
2020-12-26 17:49 - 2019-05-16 09:55 - 000000000 ____D C:\Program Files\Dell
2020-12-26 17:43 - 2020-10-08 16:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-26 16:59 - 2020-10-08 16:30 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{30B6437D-C228-47AE-A365-8751C0F946E4}
2020-12-24 21:16 - 2020-10-08 16:30 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-24 17:19 - 2020-11-21 13:31 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-24 10:06 - 2020-10-08 16:22 - 000000000 ____D C:\Users\ala
2020-12-21 20:13 - 2020-08-22 07:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-18 07:52 - 2020-11-21 13:36 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:36 - 000002354 _____ C:\ProgramData\Plocha\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:33 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-12-16 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-16 10:12 - 2019-07-08 08:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-12-14 11:06 - 2019-07-01 02:53 - 000000000 ____D C:\Users\ala\AppData\Local\Packages
2020-12-14 09:15 - 2020-08-09 16:28 - 000000000 ____D C:\Users\ala\AppData\Local\CrashDumps
2020-12-14 08:26 - 2019-05-16 09:55 - 000000000 ____D C:\ProgramData\PCDr
2020-12-14 08:24 - 2020-10-08 16:19 - 000365784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 11:34 - 2020-01-18 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-12-11 10:47 - 2019-07-08 09:34 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-11 10:21 - 2020-09-14 13:56 - 000000000 ____D C:\Users\ala\AppData\Roaming\qBittorrent
2020-12-08 10:10 - 2020-10-08 16:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3139865290-4020562401-507065138-1001
2020-12-08 10:10 - 2020-10-08 16:22 - 000002357 _____ C:\Users\ala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-07 13:39 - 2019-05-16 09:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-07 13:24 - 2019-07-29 07:42 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-07 13:23 - 2019-05-16 09:54 - 000000000 ____D C:\Program Files\Intel
2020-12-07 13:21 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-12-07 13:19 - 2019-05-16 09:57 - 000000000 ____D C:\ProgramData\Intel
2020-12-07 13:19 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-07 10:09 - 2020-10-08 16:30 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-07 10:09 - 2020-10-08 16:30 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 16:10 - 2020-08-03 10:17 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000160384 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdisk.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-12-02 16:10 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:01 - 2020-11-05 10:18 - 000001989 _____ C:\ProgramData\Plocha\AVG Business Security.lnk
2020-12-02 12:01 - 2020-08-03 10:19 - 000002001 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Business Security.lnk
2020-12-02 11:35 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Roaming\WhatsApp
2020-12-02 11:09 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Local\WhatsApp
2020-12-01 23:28 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\Zotero
2020-12-01 10:40 - 2019-07-01 10:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-01 10:40 - 2019-07-01 10:23 - 000000000 ____D C:\Users\ala\AppData\Local\PlaceholderTileLogoFolder
2020-12-01 10:39 - 2019-07-01 10:32 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-30 09:32 - 2020-10-08 16:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 09:32 - 2020-10-08 16:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2019-07-31 07:54 - 2019-07-31 07:54 - 060465450 _____ () C:\Program Files (x86)\GraphPad_Prism_8.0.1.244.zip
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by ala (administrator) on DESKTOP-O0BRIV9 (Dell Inc. Inspiron 3780) (26-12-2020 17:57:06)
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\bccavsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files\AVG\Antivirus\bcc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [156808 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [5160760 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\Installer\chrmstp.exe [2020-12-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07AAAD4F-DA0D-4542-8E26-2CFB17A24C98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {21C2A005-54F9-4FB7-9958-A8646648A1BD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {29D5A5BC-5371-4074-8859-AE64252B5BC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {43C4DD4C-4C95-41C2-945E-8A5F2C6961AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {56DE5CEA-A53D-4F83-8043-2F6FAE2F295B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {61001762-2D18-4A6A-8D70-99B81D3F6A32} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6B029546-AA10-4FF6-8400-F2E486258FA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DF710D-5E29-4225-B530-BBD71DFE8D0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {94C2C7D3-B58A-4FE1-A1C4-3C08D889146E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C23A1732-1103-4F50-A505-5641BDDA85E4} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D03391D7-4210-4CF1-86E8-DE6431BED95F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {DF26CE9E-C3D5-4C74-93C8-43FBFEE216A4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {ED3F1085-7ACA-4EA3-83E1-C4DD8DC0A316} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EEB136A7-0B86-4549-B40E-B5430757A59B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {FA857791-1974-4587-A8CD-92C2CD846F13} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{722c7352-e06c-4049-9082-3f02fe44d264}: [DhcpNameServer] 147.230.16.240 147.230.16.140
Tcpip\..\Interfaces\{a803e742-f451-432a-832f-6503d089d08b}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c765404f-c0d1-4425-a6f6-c81c65e93023}: [DhcpNameServer] 147.230.16.140 147.230.16.1
Tcpip\..\Interfaces\{e272aa39-2491-49aa-abe3-f3ad975f619e}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
======
Edge Notifications: HKU\S-1-5-21-3139865290-4020562401-507065138-1001 -> hxxps://www.reflex.cz
Edge DefaultProfile: Default
Edge Profile: C:\Users\ala\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-21]
FireFox:
========
FF DefaultProfile: 9eb1quei.default
FF ProfilePath: C:\Users\ala\AppData\Roaming\Zotero\Zotero\Profiles\9eb1quei.default [2020-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default [2020-12-26]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.reflex.cz
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Dokumenty) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Disk Google) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (YouTube) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-24]
CHR Extension: (Zotero Connector) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2020-12-24]
CHR Extension: (Tabulky) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-24]
CHR Extension: (Save to Facebook) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-02-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-11]
CHR HKU\S-1-5-21-3139865290-4020562401-507065138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [358432 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Business Console Client Antivirus Service; C:\Program Files\AVG\Antivirus\bccavsvc.exe [3862664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientService.exe [71104 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgBcc; C:\Program Files\AVG\Antivirus\bcc.exe [1279416 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7871424 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\elevation_service.exe [1409224 2020-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482680 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2020-12-11] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2020-10-29] (Dell Inc -> )
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2020-12-04] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 dcpm-notify; "C:\Program Files\Dell\CommandPowerManager\NotifyService.exe" [X]
S2 Dell SupportAssist Remediation; "C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe" [X]
S2 RAPSService; "C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe" [X]
S3 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X]
S2 SmartByte Analytics Service; "C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe" [X]
S2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdisk.sys [160384 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24952 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R4 DBUtil_2_3; C:\WINDOWS\TEMP\DBUtil_2_3.Sys [14840 2020-12-26] (Dell Inc. -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74048 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-26 17:53 - 2020-12-26 17:53 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (3).exe
2020-12-26 11:58 - 2020-12-26 11:58 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (2).exe
2020-12-26 11:56 - 2020-12-26 11:56 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner (1).exe
2020-12-26 11:54 - 2020-12-26 17:49 - 000000000 ____D C:\AdwCleaner
2020-12-26 11:53 - 2020-12-26 11:53 - 008447152 _____ (Malwarebytes) C:\Users\ala\Downloads\AdwCleaner.exe
2020-12-25 22:19 - 2020-12-26 17:57 - 000000000 ____D C:\FRST
2020-12-16 10:13 - 2020-12-16 10:13 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-12-15 10:29 - 2020-12-15 10:29 - 001239586 _____ C:\Users\ala\Downloads\0418TR.PDF
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-14 08:13 - 2020-12-14 08:13 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-07 13:41 - 2020-12-07 13:41 - 000024952 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2020-12-07 13:20 - 2020-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-12-07 13:17 - 2020-12-07 13:17 - 000000000 ____D C:\WINDOWS\{4AD4E1A9-DEDE-4B9F-A864-284E82E97C2D}
2020-12-07 13:14 - 2020-12-07 13:15 - 000000000 ____D C:\ProgramData\Temp
2020-12-07 13:14 - 2020-12-07 13:14 - 000000000 ____D C:\WINDOWS\{E78AC032-4356-4C1D-820A-951B0B5EABF6}
2020-12-03 14:21 - 2020-12-11 10:37 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-12-02 16:10 - 2020-12-02 16:10 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-02 16:10 - 2020-12-02 16:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-12-02 16:10 - 2020-12-02 16:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-12-02 10:40 - 2020-12-02 10:41 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (2).pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products.pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products (1).pdf
2020-11-26 12:06 - 2020-11-26 12:06 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-26 17:55 - 2020-10-08 16:30 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-26 17:55 - 2019-12-07 15:41 - 000719302 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-26 17:55 - 2019-12-07 15:41 - 000145428 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-26 17:55 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-26 17:53 - 2020-11-21 13:31 - 000000000 ____D C:\Program Files\CCleaner
2020-12-26 17:53 - 2019-07-01 02:55 - 000000000 ___RD C:\Users\ala\OneDrive
2020-12-26 17:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-26 17:52 - 2019-07-01 02:53 - 000000000 __SHD C:\Users\ala\IntelGraphicsProfiles
2020-12-26 17:52 - 2019-05-16 09:59 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-12-26 17:50 - 2020-10-08 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-26 17:50 - 2020-10-08 16:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-26 17:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-26 17:50 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-26 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-12-26 17:49 - 2019-05-16 10:05 - 000000000 ____D C:\ProgramData\Dell
2020-12-26 17:49 - 2019-05-16 09:55 - 000000000 ____D C:\Program Files\Dell
2020-12-26 17:43 - 2020-10-08 16:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-26 16:59 - 2020-10-08 16:30 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{30B6437D-C228-47AE-A365-8751C0F946E4}
2020-12-24 21:16 - 2020-10-08 16:30 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-24 17:19 - 2020-11-21 13:31 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-24 10:06 - 2020-10-08 16:22 - 000000000 ____D C:\Users\ala
2020-12-21 20:13 - 2020-08-22 07:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-18 07:52 - 2020-11-21 13:36 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:36 - 000002354 _____ C:\ProgramData\Plocha\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:33 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-12-16 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-16 10:12 - 2019-07-08 08:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-12-14 11:06 - 2019-07-01 02:53 - 000000000 ____D C:\Users\ala\AppData\Local\Packages
2020-12-14 09:15 - 2020-08-09 16:28 - 000000000 ____D C:\Users\ala\AppData\Local\CrashDumps
2020-12-14 08:26 - 2019-05-16 09:55 - 000000000 ____D C:\ProgramData\PCDr
2020-12-14 08:24 - 2020-10-08 16:19 - 000365784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 11:34 - 2020-01-18 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-12-11 10:47 - 2019-07-08 09:34 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-11 10:21 - 2020-09-14 13:56 - 000000000 ____D C:\Users\ala\AppData\Roaming\qBittorrent
2020-12-08 10:10 - 2020-10-08 16:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3139865290-4020562401-507065138-1001
2020-12-08 10:10 - 2020-10-08 16:22 - 000002357 _____ C:\Users\ala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-07 13:39 - 2019-05-16 09:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-07 13:24 - 2019-07-29 07:42 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-07 13:23 - 2019-05-16 09:54 - 000000000 ____D C:\Program Files\Intel
2020-12-07 13:21 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-12-07 13:19 - 2019-05-16 09:57 - 000000000 ____D C:\ProgramData\Intel
2020-12-07 13:19 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-07 10:09 - 2020-10-08 16:30 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-07 10:09 - 2020-10-08 16:30 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 16:10 - 2020-08-03 10:17 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000160384 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdisk.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-12-02 16:10 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:01 - 2020-11-05 10:18 - 000001989 _____ C:\ProgramData\Plocha\AVG Business Security.lnk
2020-12-02 12:01 - 2020-08-03 10:19 - 000002001 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Business Security.lnk
2020-12-02 11:35 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Roaming\WhatsApp
2020-12-02 11:09 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Local\WhatsApp
2020-12-01 23:28 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\Zotero
2020-12-01 10:40 - 2019-07-01 10:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-01 10:40 - 2019-07-01 10:23 - 000000000 ____D C:\Users\ala\AppData\Local\PlaceholderTileLogoFolder
2020-12-01 10:39 - 2019-07-01 10:32 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-30 09:32 - 2020-10-08 16:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 09:32 - 2020-10-08 16:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2019-07-31 07:54 - 2019-07-31 07:54 - 060465450 _____ () C:\Program Files (x86)\GraphPad_Prism_8.0.1.244.zip
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: extremne zpomaleny internet
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\ala\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
C:\WINDOWS\invcol.tmp
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\ala\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
Re: extremne zpomaleny internet
Fix result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (27-12-2020 14:56:43) Run:1
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
C:\WINDOWS\invcol.tmp
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\ala\AppData\Local\Temp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CAD7F93C-83BB-48E8-A89E-480954E8E8AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAD7F93C-83BB-48E8-A89E-480954E8E8AA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D814C0D1-78D5-40AA-B119-567B56DCF650}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D814C0D1-78D5-40AA-B119-567B56DCF650}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\WINDOWS\invcol.tmp => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
C:\Users\ala\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 11296768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49676701 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 95630918 B
Edge => 198608 B
Chrome => 287417011 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 9949016 B
systemprofile32 => 9949016 B
LocalService => 9972010 B
NetworkService => 9972010 B
ala => 20438646 B
RecycleBin => 1837274 B
EmptyTemp: => 482.9 MB temporary data Removed.
================================
Ran by ala (27-12-2020 14:56:43) Run:1
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
C:\WINDOWS\invcol.tmp
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\ala\AppData\Local\Temp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CAD7F93C-83BB-48E8-A89E-480954E8E8AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAD7F93C-83BB-48E8-A89E-480954E8E8AA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D814C0D1-78D5-40AA-B119-567B56DCF650}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D814C0D1-78D5-40AA-B119-567B56DCF650}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\WINDOWS\invcol.tmp => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
C:\Users\ala\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 11296768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49676701 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 95630918 B
Edge => 198608 B
Chrome => 287417011 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 9949016 B
systemprofile32 => 9949016 B
LocalService => 9972010 B
NetworkService => 9972010 B
ala => 20438646 B
RecycleBin => 1837274 B
EmptyTemp: => 482.9 MB temporary data Removed.
================================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: extremne zpomaleny internet
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
mataliberec
- Návštěvník
- Příspěvky: 26
- Registrován: 12 led 2010 16:46
Re: extremne zpomaleny internet
tak prý je to lepší, díky za pomoc, pošleme příspěvek na chod fóra 
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: extremne zpomaleny internet
Zkuste ještě defragmentaci disku. Nemáte zač a za příspěvek děkujeme!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?