Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vyskakujuce okna

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Januska25679
Návštěvník
Návštěvník
Příspěvky: 1
Registrován: 12 led 2021 17:24

Vyskakujuce okna

#1 Příspěvek od Januska25679 »

Dobry den,
neviem co sa stalo, ale na notebooku mi zacali v google chrome aj v inych prehliadacoch vyskakovat rozne okna. Posielam FRST

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [834552 2019-03-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe [4742616 2018-12-19] (Adaware Software -> )
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614832 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [3708672 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [240512 2019-07-12] (Mixbyte Inc -> )
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8442464 2020-12-17] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Jana\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-12-20] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Run: [AVGBrowserAutoLaunch_9392C5416D21222CA2289E683DF5B73F] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1981016 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\WINDOWS\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.1.7549.90\Installer\chrmstp.exe [2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies)
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02CDD2BB-04D0-4827-BA2F-DDF33BBE3288} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2497212874-3784736307-1135634520-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-11] (Microsoft Windows -> )
Task: {03F64C2D-47CA-49B9-A72D-EBDF14CE7A2F} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5495432 2020-11-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {0C17DC0E-E339-4490-AF41-6E9070BAD94E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {175335C2-99E4-4B39-9C7E-972201EBD95E} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812664 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 70bc2f1f-f243-4599-aefd-e8da33bb8653
Task: {2010ABF4-BA6F-4D61-A218-468A1759F24D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2533FFC4-9775-404F-97CA-BE5FA928E0B4} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1981016 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {25723017-3EC1-4546-80DC-8AF5B359392C} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {2E70854B-4B0B-420D-B838-1D553E25F1F9} - System32\Tasks\WpsNotifyTask_Jana => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsnotify.exe [364376 2013-12-26] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {3798FA9C-D7FA-487B-828B-7814DD5A57D0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b205f7f5-37d5-4ebb-9a89-07c839079fb5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {46BF5D5D-C784-491C-9D37-A9DD8F2837CE} - System32\Tasks\App Explorer => C:\Users\Jana\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7949992 2020-09-04] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {5C3DD4DC-B038-4B81-9939-D1049BA031A7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {5D3D2FFD-3F3A-4BF3-B78F-14E91493810C} - System32\Tasks\WpsUpdateTask_Jana => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe [390488 2013-12-26] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {5E7CA278-1466-4F16-B645-AEC5FBE3EA9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {65D41137-CBBB-40B8-811F-E94C1CED924F} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7C956316-0DA1-4636-98C7-56D4E5CF396D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BD3D1A3-279A-418F-8964-43968F8A4786} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b62a5c13-f5e3-4061-b1a4-3854332f5435 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {B458C0EA-9115-4420-BF63-060514F0173F} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [5544192 2021-01-04] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {B4985BF7-81AB-4E0F-B780-19A86789F7AC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B5FDB0E8-6638-4EE5-9694-1B2151B0B1EE} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\704d2f3a-852c-4e7b-aef4-f36ae9c50396 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {BBEA418B-D044-4415-8866-FCF209CB46B2} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {BEA8ACF2-6894-4776-B5E6-1E76505FB2CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {CAD08108-08B7-437D-B1E9-45B5692230ED} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f4982049-ec15-4375-a722-e0a44281018c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {CC0E77CB-2A9F-40A0-AABE-D939B6F566B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {CC4E8584-220B-47AB-9FCF-627A25371A2B} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D151EE4D-113D-49BC-B459-08B86AB6ED70} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D1EE8DA5-EEF9-4282-B2B4-831606E44636} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4648192 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid eaf78076-fecf-4780-acd1-73e2fe6d210a
Task: {D2412234-5425-488E-8C5D-928425D3CB70} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1981016 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D77F8450-5068-4556-85D4-209EF2077D5A} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {E62A0F34-AE6D-496F-85F9-4173872DFC04} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {E62EC179-BFFE-4BF3-86DE-A97EB2850FA2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {F71BFCFB-25EB-40B3-916B-BF0745332F59} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {FFAC18CF-E1A7-4C66-A285-89F16148CA0A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\WpsNotifyTask_Jana.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Jana.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{5403f52c-42f8-4d90-893e-352fc074c17b}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{74d22c3a-87cd-4d39-bbee-ecc610bf5ea7}: [DhcpNameServer] 150.212.1.3
Tcpip\..\Interfaces\{ae90eb59-5481-4a92-86d5-6f9ee906ee51}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
======
Edge Profile: C:\Users\Jana\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-12]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default [2021-01-07]
CHR Notifications: Default -> hxxps://kemerovobarberwanted.ru; hxxps://teams.microsoft.com; hxxps://www.izlato.sk; hxxps://www.tipli.sk
CHR NewTab: Default -> Not-active:"chrome-extension://mallpejgeafdahhflmliiahjdpgbegpk/ntpnew.html"
CHR Extension: (Prezentácie) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-19]
CHR Extension: (Dokumenty) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-19]
CHR Extension: (Disk Google) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (YouTube) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-19]
CHR Extension: (Tabuľky) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-19]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2019-07-20]
CHR Extension: (PDF Viewer & Converter by FromDocToPDF (BETA)) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk [2020-11-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-08]
CHR Extension: (Gmail) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-12]
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-28]
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareService.exe [587832 2018-12-19] (Adaware Software -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [1230680 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.1.7549.90\elevation_service.exe [1195472 2021-01-05] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12976336 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602632 2018-07-31] (Dolby Laboratories, Inc. -> )
R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [5987584 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [288200 2018-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-07-12] (Mixbyte Inc -> Freemake)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29280 2020-12-17] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208808 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332944 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2021-01-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42568 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176528 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [522616 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109064 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84640 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851392 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214936 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [325056 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2018-05-02] (Bitdefender SRL -> BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-12 16:59 - 2021-01-12 17:03 - 000021886 _____ C:\Users\Jana\Desktop\FRST.txt
2021-01-12 16:58 - 2021-01-12 17:01 - 000000000 ____D C:\FRST
2021-01-12 16:56 - 2021-01-12 16:56 - 002281472 _____ (Farbar) C:\Users\Jana\Downloads\FRST64.exe
2021-01-12 16:56 - 2021-01-12 16:56 - 002281472 _____ (Farbar) C:\Users\Jana\Desktop\FRST64.exe
2021-01-12 09:19 - 2021-01-12 09:19 - 002401918 _____ C:\Users\Jana\Downloads\Hubblov vesmírny ďalekohľad.pdf
2021-01-10 23:05 - 2021-01-10 23:05 - 002150588 _____ C:\Users\Jana\Downloads\Meranie prúdu.pptx
2021-01-10 23:04 - 2021-01-10 23:04 - 000156659 _____ C:\Users\Jana\Downloads\Fyzikálna veličina elektrický prúd. Meranie prúdu.pptx
2021-01-10 23:03 - 2021-01-10 23:03 - 001810829 _____ C:\Users\Jana\Downloads\Elektrický prúd ako fyzikálna veličina. Meranie elektrického prúdu.pptx
2021-01-10 22:44 - 2021-01-10 22:44 - 000251024 _____ C:\Users\Jana\Downloads\Gravitačná sila a hmotnosť telesa (1).pptx
2021-01-10 22:41 - 2021-01-10 22:41 - 000650883 _____ C:\Users\Jana\Downloads\Gravitačná sila a hmotnosť telesa.pptx
2021-01-10 22:30 - 2021-01-10 22:30 - 000986429 _____ C:\Users\Jana\Downloads\Tuhnutie.pptx
2021-01-10 22:13 - 2021-01-10 22:13 - 001050285 _____ C:\Users\Jana\Downloads\Meranie objemu pevných telies.pptx
2021-01-05 18:34 - 2021-01-05 18:35 - 001687040 _____ C:\Users\Jana\Downloads\Nepotvrdené 539393.crdownload
2021-01-05 18:32 - 2021-01-05 18:32 - 000267436 _____ C:\Users\Jana\Downloads\2 (1).pdf
2021-01-03 17:35 - 2021-01-03 17:35 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Skype
2021-01-01 22:18 - 2021-01-01 22:18 - 000248034 _____ C:\Users\Jana\Downloads\7 (1).pdf
2021-01-01 22:17 - 2021-01-01 22:17 - 000111266 _____ C:\Users\Jana\Downloads\derivacia.pdf
2021-01-01 17:11 - 2021-01-07 21:05 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2021-01-01 17:11 - 2021-01-01 17:10 - 000217120 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys.161004989525002
2021-01-01 17:11 - 2021-01-01 17:09 - 000341128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-31 22:55 - 2020-12-31 22:55 - 000248034 _____ C:\Users\Jana\Downloads\7.pdf
2020-12-24 10:41 - 2020-12-24 10:41 - 001352371 _____ C:\Users\Jana\Downloads\20191011_92820__0.pptx
2020-12-23 22:36 - 2020-12-23 22:36 - 001648700 _____ C:\Users\Jana\Downloads\Grupy.pdf
2020-12-23 22:26 - 2020-12-23 22:26 - 000491008 ____T C:\Users\Jana\Desktop\Okruhy.ppt
2020-12-23 22:23 - 2020-12-23 22:23 - 000518369 _____ C:\Users\Jana\Downloads\20161027_145546__0 (2).pptx
2020-12-23 22:19 - 2020-12-23 22:19 - 001360384 ____T C:\Users\Jana\Desktop\Grupy.ppt
2020-12-23 22:16 - 2020-12-23 22:16 - 001358071 _____ C:\Users\Jana\Downloads\20201015_223637__0.pptx
2020-12-22 17:18 - 2020-12-22 17:18 - 006170795 _____ C:\Users\Jana\Downloads\algebra_1_cb_(www.studujes.sk).pdf
2020-12-21 22:35 - 2020-12-21 22:35 - 000267436 _____ C:\Users\Jana\Downloads\2.pdf
2020-12-21 22:06 - 2020-12-21 22:06 - 000121247 _____ C:\Users\Jana\Downloads\algebraicke_struktury_(www.studujes.sk).pdf
2020-12-21 19:04 - 2020-12-21 19:04 - 001941243 _____ C:\Users\Jana\Desktop\Amavil.pdf
2020-12-20 18:30 - 2020-12-20 18:30 - 009088221 _____ C:\Users\Jana\Downloads\Eliáš horvát kajan - zbierka-uloh-z-vyssej-matematiky-2[1].pdf
2020-12-20 15:24 - 2020-12-20 15:24 - 000002370 _____ C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-12-20 15:24 - 2020-12-20 15:24 - 000002362 _____ C:\Users\Jana\Desktop\Microsoft Teams.lnk
2020-12-20 15:24 - 2020-12-20 15:24 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Teams
2020-12-19 21:59 - 2020-12-19 21:59 - 000046342 _____ C:\Users\Jana\Downloads\Dochádzka Žulkovská.xlsx
2020-12-18 20:23 - 2020-12-18 20:23 - 001123466 _____ C:\Users\Jana\Downloads\ivočíchy v blízkosti ľudských sídel.pptx
2020-12-18 20:23 - 2020-12-18 20:23 - 000128418 _____ C:\Users\Jana\Downloads\Prezentacia Biologia.odp
2020-12-18 20:20 - 2020-12-18 20:20 - 001335100 _____ C:\Users\Jana\Downloads\Zemetrasenie (5).pptx
2020-12-18 19:47 - 2020-12-18 19:47 - 002698934 _____ C:\Users\Jana\Downloads\Zemetrasenie (4).pptx
2020-12-18 18:38 - 2020-12-18 18:38 - 000002392 _____ C:\Users\Jana\Downloads\1608313132448.ics
2020-12-17 21:43 - 2020-12-17 21:43 - 001868999 _____ C:\Users\Jana\Downloads\BD03576B-A75E-4C7B-85C4-B4D37A189034.jpeg
2020-12-17 10:06 - 2020-12-17 10:06 - 013411139 _____ C:\Users\Jana\Downloads\Richard-Havel-prezentácia.pptx
2020-12-16 22:25 - 2020-12-16 22:25 - 000738670 _____ C:\Users\Jana\Downloads\Zemetrasenie (3).pptx
2020-12-16 22:22 - 2020-12-16 22:23 - 001487059 _____ C:\Users\Jana\Downloads\Zemetrasenie (2).pptx
2020-12-16 22:20 - 2020-12-16 22:20 - 000431014 _____ C:\Users\Jana\Downloads\PowerPoint zemetrasenie.html
2020-12-16 22:18 - 2020-12-16 22:18 - 002098631 _____ C:\Users\Jana\Downloads\Zemetrasenie v Indickom oceáne 26. decembra 2004.pptx
2020-12-16 22:10 - 2020-12-16 22:10 - 002315208 _____ C:\Users\Jana\Downloads\Premena hornín a premenené horniny.pptx
2020-12-16 22:10 - 2020-12-16 22:10 - 001538560 _____ C:\Users\Jana\Downloads\Premena hornín+ premenené horniny.ppt
2020-12-16 22:05 - 2020-12-16 22:05 - 001713664 _____ C:\Users\Jana\Downloads\Oporná a pohybová sústava.ppt.ppt
2020-12-16 22:01 - 2020-12-16 22:02 - 001313841 _____ C:\Users\Jana\Downloads\Oporná a pohybová sústava - kosti.pptx
2020-12-16 21:55 - 2020-12-16 21:55 - 000551798 _____ C:\Users\Jana\Downloads\Obeh telových tekutín.ppsx
2020-12-15 21:49 - 2020-12-15 21:50 - 011244544 _____ C:\Users\Jana\Downloads\Chránené živočíchy v blízkosti človeka.ppt.ppt
2020-12-15 21:47 - 2020-12-15 21:48 - 004835328 _____ C:\Users\Jana\Downloads\Chránené živočíchy v blízkosti človeka.ppt
2020-12-15 21:43 - 2020-12-15 21:43 - 004076544 _____ C:\Users\Jana\Downloads\Ľudské sídla a ich okolie 2. časť - živočíchy.ppt
2020-12-15 21:40 - 2020-12-15 21:40 - 000084733 _____ C:\Users\Jana\Desktop\chranene zivocichy v blizkosti cloveka.pdf
2020-12-15 21:36 - 2020-12-15 21:36 - 000087103 _____ C:\Users\Jana\Desktop\zivocichy v okoli ludskych sidel.pdf
2020-12-15 21:28 - 2020-12-15 21:28 - 002239488 _____ C:\Users\Jana\Downloads\živočíchy v okolí ľudských sídel.ppt
2020-12-15 21:26 - 2020-12-15 21:26 - 006107650 _____ C:\Users\Jana\Downloads\Živočíchy v okolí ľudských sídiel.pptx
2020-12-15 21:23 - 2020-12-15 21:23 - 000001935 _____ C:\Users\Jana\Desktop\Zoom.lnk
2020-12-15 21:23 - 2020-12-15 21:23 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-12-15 21:21 - 2020-12-15 21:21 - 003613015 _____ C:\Users\Jana\Downloads\Drobné lesné živočíchy.pptx
2020-12-15 21:15 - 2020-12-15 21:15 - 015399959 _____ C:\Users\Jana\Downloads\lesné bezstavovce (2).pptx
2020-12-15 16:19 - 2020-12-15 16:19 - 002576896 _____ C:\Users\Jana\Downloads\Nej_Vianoce.pps
2020-12-15 16:17 - 2020-12-15 16:17 - 000726528 _____ C:\Users\Jana\Downloads\Vianoce.ppt
2020-12-15 16:11 - 2020-12-15 16:11 - 000131550 _____ C:\Users\Jana\Downloads\Weihnachten.pdf
2020-12-15 15:37 - 2020-12-15 15:37 - 006175744 _____ C:\Users\Jana\Downloads\Weihnachten_in_Deutschland_Neu.ppt
2020-12-15 15:27 - 2020-12-15 15:27 - 001056768 _____ C:\Users\Jana\Downloads\Weihnachten in Europaländern - Vianoce v európskych krajinách.ppt
2020-12-15 15:21 - 2020-12-15 15:21 - 003787776 _____ C:\Users\Jana\Downloads\Weihnachtliche Traditionen.ppt
2020-12-15 15:19 - 2020-12-15 15:19 - 015875072 _____ C:\Users\Jana\Downloads\Wir feiern Weihnachten.ppt
2020-12-14 22:11 - 2020-12-14 22:11 - 001885327 _____ C:\Users\Jana\Downloads\16_MAT_UCEBNICE_diferencialni_pocet (1).pdf
2020-12-14 21:27 - 2020-12-14 21:28 - 001758175 _____ C:\Users\Jana\Downloads\Filipek.odt
2020-12-14 10:50 - 2020-12-14 10:50 - 001448955 _____ C:\Users\Jana\Downloads\compressPdf_4a224e826986483538d883d0f0f04ca9.zip
2020-12-14 10:45 - 2020-12-14 10:52 - 000744579 _____ C:\Users\Jana\Documents\RL_Viliam.pdf
2020-12-14 10:44 - 2020-12-14 10:52 - 000717758 _____ C:\Users\Jana\Documents\RL_Amalia.pdf
2020-12-14 10:08 - 2020-12-14 10:08 - 000001920 _____ C:\Users\Jana\Desktop\CAS Calculator.lnk
2020-12-14 10:08 - 2020-12-14 10:08 - 000000000 ____D C:\Users\Jana\AppData\Local\GeoGebra_CAS
2020-12-14 10:02 - 2020-12-14 10:08 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra
2020-12-14 10:02 - 2020-12-14 10:02 - 000001974 _____ C:\Users\Jana\Desktop\Graphing Calc.lnk
2020-12-14 10:02 - 2020-12-14 10:02 - 000000000 ____D C:\Users\Jana\AppData\Roaming\GeoGebra
2020-12-14 10:02 - 2020-12-14 10:02 - 000000000 ____D C:\Users\Jana\AppData\Local\GeoGebra_Graphing
2020-12-14 10:00 - 2020-12-14 10:01 - 067634344 _____ (International GeoGebra Institute) C:\Users\Jana\Downloads\GeoGebraGraphing-Windows-Installer-6-0-620-0.exe
2020-12-14 10:00 - 2020-12-14 10:01 - 067604128 _____ (International GeoGebra Institute) C:\Users\Jana\Downloads\GeoGebraCAS-Windows-Installer-6-0-620-0.exe
2020-12-13 21:47 - 2020-12-13 21:47 - 002857472 _____ C:\Users\Jana\Downloads\Meranie dĺžky.ppt
2020-12-13 21:37 - 2020-12-13 21:37 - 000297772 _____ C:\Users\Jana\Downloads\Topenie (1).pptx
2020-12-13 21:33 - 2020-12-13 21:33 - 003830799 _____ C:\Users\Jana\Downloads\Topenie.pptx.pptx
2020-12-13 21:31 - 2020-12-13 21:31 - 002660555 _____ C:\Users\Jana\Downloads\Topenie.pptx
2020-12-13 21:24 - 2020-12-13 21:24 - 000105925 _____ C:\Users\Jana\Downloads\Telesá pôsobia na seba silou. Účinky sily na teleso.pptx
2020-12-13 21:20 - 2020-12-13 21:21 - 001014998 _____ C:\Users\Jana\Downloads\Telesá pôsobia na seba silou.pptx
2020-12-13 21:05 - 2020-12-13 21:05 - 000358698 _____ C:\Users\Jana\Downloads\Elektrický prúd v kovovom vodiči. Tepelné účinky elektrického prúdu..pptx
2020-12-13 21:04 - 2020-12-13 21:04 - 000426607 _____ C:\Users\Jana\Downloads\Elektrický prúd v kovovom vodiči. Tepelné účinky prúdu..pptx
2020-12-13 21:04 - 2020-12-13 21:04 - 000426607 _____ C:\Users\Jana\Downloads\Elektrický prúd v kovovom vodiči. Tepelné účinky prúdu. (1).pptx
2020-12-13 21:03 - 2020-12-13 21:04 - 007624368 _____ C:\Users\Jana\Downloads\El. prúd v kovovom vodiči.pptx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-12 16:53 - 2020-11-02 04:43 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{74C7168C-B6DB-4B68-8C9E-9A6C8D599011}
2021-01-12 16:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-12 16:44 - 2020-11-02 04:18 - 001733408 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-12 16:44 - 2020-11-02 01:52 - 000696308 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-12 16:44 - 2020-11-02 01:52 - 000142564 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-12 16:44 - 2020-02-11 18:24 - 000099858 _____ C:\WINDOWS\system32\perfh01B.dat
2021-01-12 16:44 - 2020-02-11 18:24 - 000021362 _____ C:\WINDOWS\system32\perfc01B.dat
2021-01-12 16:44 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-12 16:43 - 2020-11-02 03:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-12 12:31 - 2020-11-30 13:00 - 000003310 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b0c6a6277e38
2021-01-12 12:31 - 2020-11-02 04:43 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-12 12:31 - 2020-11-02 04:43 - 000003492 _____ C:\WINDOWS\system32\Tasks\LenovoUtility Task
2021-01-12 12:31 - 2020-11-02 04:43 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-01-12 12:31 - 2020-11-02 04:43 - 000003384 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-12 12:31 - 2020-11-02 04:43 - 000003280 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-12 12:31 - 2020-11-02 04:43 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2021-01-12 12:31 - 2020-11-02 04:43 - 000003160 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-12 12:31 - 2020-11-02 04:43 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2497212874-3784736307-1135634520-1001
2021-01-12 12:31 - 2020-11-02 04:43 - 000002770 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2021-01-12 12:31 - 2020-11-02 04:43 - 000002408 _____ C:\WINDOWS\system32\Tasks\App Explorer
2021-01-12 12:31 - 2020-11-02 04:43 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-01-12 12:31 - 2020-11-02 04:43 - 000002116 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-01-12 12:31 - 2020-11-02 04:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-01-12 10:37 - 2019-09-15 16:01 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-01-12 10:30 - 2020-11-02 04:43 - 000003418 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_Jana
2021-01-12 10:30 - 2020-11-02 04:43 - 000003418 _____ C:\WINDOWS\system32\Tasks\WpsNotifyTask_Jana
2021-01-12 10:30 - 2019-08-28 17:37 - 000000404 _____ C:\WINDOWS\Tasks\WpsUpdateTask_Jana.job
2021-01-12 10:30 - 2019-08-28 17:37 - 000000404 _____ C:\WINDOWS\Tasks\WpsNotifyTask_Jana.job
2021-01-12 09:53 - 2019-07-17 01:27 - 000000000 ____D C:\Users\Jana\AppData\Local\Host App Service
2021-01-12 09:33 - 2019-07-19 14:13 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 09:33 - 2019-07-19 14:13 - 000002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-12 09:33 - 2019-07-19 14:13 - 000002279 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-01-10 23:12 - 2019-07-17 01:28 - 000000000 ____D C:\Users\Jana\AppData\Local\Packages
2021-01-10 22:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-10 22:11 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-10 22:10 - 2020-10-06 07:10 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-10 22:10 - 2020-10-06 07:10 - 000002272 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-10 22:10 - 2020-10-06 07:10 - 000002272 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-08 12:58 - 2019-08-20 14:16 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2021-01-07 21:10 - 2019-08-20 14:58 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-07 21:10 - 2019-08-20 14:58 - 000002359 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2021-01-07 21:10 - 2019-08-20 14:58 - 000002359 _____ C:\ProgramData\Desktop\AVG Secure Browser.lnk
2021-01-07 21:04 - 2019-08-20 14:16 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2021-01-06 11:23 - 2019-09-01 16:37 - 000000000 ____D C:\Users\Jana\AppData\Local\ElevatedDiagnostics
2021-01-06 10:22 - 2019-08-20 14:13 - 000000000 ____D C:\ProgramData\AVG
2021-01-04 17:27 - 2020-11-02 04:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-04 17:27 - 2020-11-02 03:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-04 17:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-04 17:26 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-04 14:57 - 2020-11-23 15:43 - 000134400 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
2021-01-01 17:11 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-01 17:10 - 2020-11-02 14:33 - 000176528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2021-01-01 17:10 - 2020-04-24 15:15 - 000522616 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000469616 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys.161010713360902
2021-01-01 17:10 - 2019-08-20 14:16 - 000247952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000109064 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000097424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000084640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000042568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000016832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2021-01-01 17:08 - 2019-08-20 14:16 - 000851392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2021-01-01 17:08 - 2019-08-20 14:16 - 000208808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2021-01-01 17:07 - 2019-08-20 14:16 - 000332944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-24 10:43 - 2020-11-28 17:25 - 000000000 ____D C:\Users\Jana\Desktop\Nitra
2020-12-22 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-20 15:59 - 2020-04-08 10:08 - 000000000 ____D C:\Users\Jana\AppData\Local\SquirrelTemp
2020-12-20 15:28 - 2020-11-02 04:05 - 000002359 _____ C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-20 15:28 - 2019-07-17 01:34 - 000000000 ___RD C:\Users\Jana\OneDrive
2020-12-16 21:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-15 21:23 - 2020-03-31 13:56 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Zoom

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Jana (12-01-2021 17:24:56)
Running from C:\Users\Jana\Desktop
Windows 10 Home Version 2004 19041.685 (X64) (2020-11-02 03:45:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2497212874-3784736307-1135634520-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2497212874-3784736307-1135634520-503 - Limited - Disabled)
Guest (S-1-5-21-2497212874-3784736307-1135634520-501 - Limited - Disabled)
Jana (S-1-5-21-2497212874-3784736307-1135634520-1001 - Administrator - Enabled) => C:\Users\Jana
WDAGUtilityAccount (S-1-5-21-2497212874-3784736307-1135634520-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
FW: AVG Antivirus (Enabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

adaware antivirus (HKLM\...\{E20E59E7-F5E2-4C64-8A32-8679D9D24C91}_AdAwareUpdater) (Version: 12.6.997.11652 - adaware)
AdAwareInstaller (HKLM\...\{D13B7904-0E4D-4375-B4C7-C86C7C15D995}) (Version: 12.6.997.11652 - adaware) Hidden
AdAwareUpdater (HKLM\...\{E20E59E7-F5E2-4C64-8A32-8679D9D24C91}) (Version: 12.6.997.11652 - adaware) Hidden
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2018.1004.2349.42886 - Advanced Micro Devices, Inc.)
AntimalwareEngine (HKLM\...\{5C7A5F94-02E9-4C5D-A594-B1F10865965A}) (Version: 3.0.160.0 - adaware) Hidden
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
AVG Driver Updater (HKLM\...\AVG Driver Updater) (Version: 20.2.990.1458 - AVG)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.1.7549.90 - Autori prehliadača AVG Secure Browser)
AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 20.1.2191.714 - AVG)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
CEWE FOTOSVET (HKLM-x32\...\CEWE FOTOSVET) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
Convert AVI to MP4 (HKLM-x32\...\{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1) (Version: - convertavitomp4.com)
Freemake Video Converter verzia 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Mixbyte Inc.)
GeoGebra CAS Calculator (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\GeoGebra_CAS) (Version: 6.0.620 - International GeoGebra Institute)
GeoGebra Graphing Calculator (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\GeoGebra_Graphing) (Version: 6.0.620 - International GeoGebra Institute)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1061 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Kingsoft Office 2013 (9.1.0.4480) (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4480 - Kingsoft Corp.)
Lenovo App Explorer (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Host App Service) (Version: 0.273.4.172 - SweetLabs for Lenovo) <==== ATTENTION
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Opera (HKLM-x32\...\Opera) (Version: - )
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Služba Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F49D6A65-1AB6-4728-9FDA-DB5BAB631CF6}) (Version: 1.23.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Web Companion (HKLM-x32\...\{92b32aaf-e120-46f7-9660-52cb842e812f}) (Version: 7.0.2388.4219 - Lavasoft)
WinRAR 5.71 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare Free Video Converter(Build 11.0.0.221) (HKLM-x32\...\Free Video Converter_is1) (Version: 11.0.0.221 - Wondershare Software)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.1.0.223) (HKLM-x32\...\UniConverter_is1) (Version: 11.1.0.223 - Wondershare Software)
Zoom (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\ZoomUMX) (Version: 5.4.6 (59296.1207) - Zoom Video Communications, Inc.)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20200.247.0_x64__rz1tebttyb220 [2019-09-04] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-02] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-09] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-01-06] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa [2020-10-23] (Apple Inc.) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-30] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.18.0_x64__5grkq8ppsgwt4 [2020-09-30] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-20] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-06] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-11-02] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2019-10-28] (Realtek Semiconductor Corp)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-09-12] (Samsung Electronics Co. Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-09] (Spotify AB) [Startup Task]
Váš telefón -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20101.97.0_x64__8wekyb3d8bbwe [2020-11-09] (Microsoft Corporation)
Wooky čítačka -> C:\Program Files\WindowsApps\47C38C0C.Wooky_1.4.0.0_neutral__rqyjypxhge82j [2020-10-30] (MobilBonus s.r.o.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Jana\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Jana\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareShellExtension.dll [2018-12-19] (Adaware Software -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareShellExtension.dll [2018-12-19] (Adaware Software -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\cui_component.inf_amd64_0219cc1c7085a93f\igfxDTCM.dll [2018-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Jana\Desktop\HP9490CB (HP DeskJet 4530 series) - odkaz.lnk -> hxxp://192.168.0.10

==================== Loaded Modules (Whitelisted) =============

2019-07-27 17:19 - 2016-07-21 09:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2019-07-27 17:19 - 2017-03-23 08:49 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-06-28 13:16 - 2018-06-28 13:16 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-08-25 14:30 - 2020-05-30 19:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll
2020-12-21 10:43 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2020-07-26 14:27 - 2020-04-09 08:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-10-04 22:47 - 2018-10-04 22:47 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2019-07-27 17:19 - 2017-03-23 08:52 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-02-24 03:55:49&bName=
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> DefaultScope {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-09-15 16:01 - 2021-01-12 10:37 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8776C2DE-60AE-4835-B56A-E78D7EBE60E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13328.20292.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A305607E-FEB0-43E1-969C-9C9B26F16C89}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9AA24736-D53F-4215-82BC-C6658D43E9DA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E288B39B-F080-43FF-B45A-275105F4CB22}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F2B54ED4-D239-49DA-9F97-2913F280A668}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F5DE202-79A2-411C-8A7C-BFBB6C8B3936}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{085EE846-6F14-4B90-BCEB-12374DD4F185}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E698B3F1-A2FD-4A39-9A8B-5CD4C6575AC2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D31F1359-E7BA-4A57-A69F-64EF507F7355}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BC5A0F19-A3DA-4DAC-A38A-B2FAA00FFD20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C685B787-4DD0-410F-BD1E-B5841635A0EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ED02998A-12BE-465E-AE9E-63AC82718D4C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FF8498E2-6E7C-4808-904F-A20D51FE7CD7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A40B5C1C-9989-4FC1-8930-C2A9346F1CF4}] => (Allow) C:\Users\Jana\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{2B5661E3-000C-4815-9E4F-D015720BFDB5}] => (Allow) C:\Users\Jana\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{78632453-0612-43A8-8988-C46AAFFD494E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E42A305-6B0E-45B4-BF1C-79C78FB67A20}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6501EF91-30A6-4CE2-8856-BD461A2331BE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA0EF30C-440B-4535-A648-4A7076631B77}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65C2341D-E189-43A5-822C-725577DA0CE0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{52F1701D-19E6-4254-A48B-4276437D6C08}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7BE51271-A409-4E5F-B3BF-A7D2D8F9653B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{03906B00-7073-4D2B-9917-3F660E9747D2}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B89907B9-C19B-4CC2-83C0-661D13C4B9D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{23DCFD72-8932-4296-B52A-BE8774C01D6F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B4EC1FE7-F8AF-4072-A148-4AC303BAA33A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DBB3DB48-CE15-4F4C-91F1-E905512C3F9A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3E6CDE57-5FBC-4BE7-BEEB-44BA92634D72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8106BB61-27A7-4A5A-ADDB-385FD1899C72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D93255BE-B846-4116-9CA6-8CA9CFC01D91}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04852EB2-CCF7-4E38-B5EA-FBF3FC5051A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D9C4CCCA-7341-4553-B47D-5E269CC1D766}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{967AC058-7644-4692-874C-54A76331FE50}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119412
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vyskakujuce okna

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Januska25
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 16 lis 2011 10:21

Re: Vyskakujuce okna

#3 Příspěvek od Januska25 »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.0
# -------------------------------
# Build: 01-11-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-12-2021
# Duration: 00:00:25
# OS: Windows 10 Home
# Cleaned: 37
# Failed: 0


***** [ Services ] *****

Deleted WCAssistantService

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\Users\Default\AppData\Local\Host App Service
Deleted C:\Users\Jana\AppData\Local\Host App Service
Deleted C:\Users\Jana\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_MRPQ523XMEO0CM2M0N5VJ25Z3NZKGEP4
Deleted C:\Users\Jana\AppData\Roaming\Lavasoft\Web Companion

***** [ Files ] *****

Deleted C:\Windows\System32\Tasks_Migrated\App Explorer

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\APP EXPLORER

***** [ Registry ] *****

Deleted HKCU\Software\App Host Service
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46BF5D5D-C784-491C-9D37-A9DD8F2837CE}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|ProductUpdater
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92b32aaf-e120-46f7-9660-52cb842e812f}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92b32aaf-e120-46f7-9660-52cb842e812f}|DisplayName
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92b32aaf-e120-46f7-9660-52cb842e812f}|UninstallString
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|ProductUpdater
Deleted HKLM\System\Setup\FirstBoot\Services\WCAssistantService
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKU\S-1-5-18\SOFTWARE\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

Deleted PDF Viewer & Converter by FromDocToPDF (BETA) - mallpejgeafdahhflmliiahjdpgbegpk
Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak
Deleted ffjcmnpnoopgilmnfhloocdcbnimmmea
Deleted gafhhbahpojnjfhpepjjfjojbphnogmn

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5447 octets] - [12/01/2021 19:55:28]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119412
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vyskakujuce okna

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Januska25
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 16 lis 2011 10:21

Re: Vyskakujuce okna

#5 Příspěvek od Januska25 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Jana (13-01-2021 12:49:11)
Running from C:\Users\Jana\Desktop
Windows 10 Home Version 2004 19041.685 (X64) (2020-11-02 03:45:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2497212874-3784736307-1135634520-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2497212874-3784736307-1135634520-503 - Limited - Disabled)
Guest (S-1-5-21-2497212874-3784736307-1135634520-501 - Limited - Disabled)
Jana (S-1-5-21-2497212874-3784736307-1135634520-1001 - Administrator - Enabled) => C:\Users\Jana
WDAGUtilityAccount (S-1-5-21-2497212874-3784736307-1135634520-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
FW: AVG Antivirus (Enabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

adaware antivirus (HKLM\...\{E20E59E7-F5E2-4C64-8A32-8679D9D24C91}_AdAwareUpdater) (Version: 12.6.997.11652 - adaware)
AdAwareInstaller (HKLM\...\{D13B7904-0E4D-4375-B4C7-C86C7C15D995}) (Version: 12.6.997.11652 - adaware) Hidden
AdAwareUpdater (HKLM\...\{E20E59E7-F5E2-4C64-8A32-8679D9D24C91}) (Version: 12.6.997.11652 - adaware) Hidden
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2018.1004.2349.42886 - Advanced Micro Devices, Inc.)
AntimalwareEngine (HKLM\...\{5C7A5F94-02E9-4C5D-A594-B1F10865965A}) (Version: 3.0.160.0 - adaware) Hidden
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
AVG Driver Updater (HKLM\...\AVG Driver Updater) (Version: 20.2.990.1458 - AVG)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.1.7549.90 - Autori prehliadača AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
CEWE FOTOSVET (HKLM-x32\...\CEWE FOTOSVET) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
Convert AVI to MP4 (HKLM-x32\...\{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1) (Version: - convertavitomp4.com)
Freemake Video Converter verzia 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Mixbyte Inc.)
GeoGebra CAS Calculator (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\GeoGebra_CAS) (Version: 6.0.620 - International GeoGebra Institute)
GeoGebra Graphing Calculator (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\GeoGebra_Graphing) (Version: 6.0.620 - International GeoGebra Institute)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1061 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Kingsoft Office 2013 (9.1.0.4480) (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4480 - Kingsoft Corp.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Opera (HKLM-x32\...\Opera) (Version: - )
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Služba Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F49D6A65-1AB6-4728-9FDA-DB5BAB631CF6}) (Version: 1.23.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinRAR 5.71 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare Free Video Converter(Build 11.0.0.221) (HKLM-x32\...\Free Video Converter_is1) (Version: 11.0.0.221 - Wondershare Software)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.1.0.223) (HKLM-x32\...\UniConverter_is1) (Version: 11.1.0.223 - Wondershare Software)
Zoom (HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\ZoomUMX) (Version: 5.4.6 (59296.1207) - Zoom Video Communications, Inc.)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20200.247.0_x64__rz1tebttyb220 [2019-09-04] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-02] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-09] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-01-06] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa [2020-10-23] (Apple Inc.) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-30] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.18.0_x64__5grkq8ppsgwt4 [2020-09-30] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-20] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-06] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.13328.20292.0_x86__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-11-02] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2019-10-28] (Realtek Semiconductor Corp)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-09-12] (Samsung Electronics Co. Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-09] (Spotify AB) [Startup Task]
Váš telefón -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20101.97.0_x64__8wekyb3d8bbwe [2020-11-09] (Microsoft Corporation)
Wooky čítačka -> C:\Program Files\WindowsApps\47C38C0C.Wooky_1.4.0.0_neutral__rqyjypxhge82j [2020-10-30] (MobilBonus s.r.o.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Jana\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Jana\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareShellExtension.dll [2018-12-19] (Adaware Software -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareShellExtension.dll [2018-12-19] (Adaware Software -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\cui_component.inf_amd64_0219cc1c7085a93f\igfxDTCM.dll [2018-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Jana\Desktop\HP9490CB (HP DeskJet 4530 series) - odkaz.lnk -> hxxp://192.168.0.10

==================== Loaded Modules (Whitelisted) =============

2019-07-27 17:19 - 2016-07-21 09:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2019-07-27 17:19 - 2017-03-23 08:49 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-06-28 13:16 - 2018-06-28 13:16 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-08-25 14:30 - 2020-05-30 19:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll
2020-12-21 10:43 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2020-07-26 14:27 - 2020-04-09 08:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-10-04 22:47 - 2018-10-04 22:47 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-06-28 13:16 - 2018-06-28 13:16 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2019-07-27 17:19 - 2017-03-23 08:52 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-02-24 03:55:49&bName=
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> DefaultScope {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-09-15 16:01 - 2021-01-12 10:37 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8776C2DE-60AE-4835-B56A-E78D7EBE60E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13328.20292.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A305607E-FEB0-43E1-969C-9C9B26F16C89}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9AA24736-D53F-4215-82BC-C6658D43E9DA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E288B39B-F080-43FF-B45A-275105F4CB22}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F2B54ED4-D239-49DA-9F97-2913F280A668}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F5DE202-79A2-411C-8A7C-BFBB6C8B3936}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{085EE846-6F14-4B90-BCEB-12374DD4F185}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E698B3F1-A2FD-4A39-9A8B-5CD4C6575AC2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D31F1359-E7BA-4A57-A69F-64EF507F7355}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BC5A0F19-A3DA-4DAC-A38A-B2FAA00FFD20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C685B787-4DD0-410F-BD1E-B5841635A0EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ED02998A-12BE-465E-AE9E-63AC82718D4C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FF8498E2-6E7C-4808-904F-A20D51FE7CD7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A40B5C1C-9989-4FC1-8930-C2A9346F1CF4}] => (Allow) C:\Users\Jana\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{2B5661E3-000C-4815-9E4F-D015720BFDB5}] => (Allow) C:\Users\Jana\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{78632453-0612-43A8-8988-C46AAFFD494E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E42A305-6B0E-45B4-BF1C-79C78FB67A20}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6501EF91-30A6-4CE2-8856-BD461A2331BE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA0EF30C-440B-4535-A648-4A7076631B77}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65C2341D-E189-43A5-822C-725577DA0CE0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{52F1701D-19E6-4254-A48B-4276437D6C08}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7BE51271-A409-4E5F-B3BF-A7D2D8F9653B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{03906B00-7073-4D2B-9917-3F660E9747D2}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B89907B9-C19B-4CC2-83C0-661D13C4B9D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{23DCFD72-8932-4296-B52A-BE8774C01D6F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B4EC1FE7-F8AF-4072-A148-4AC303BAA33A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DBB3DB48-CE15-4F4C-91F1-E905512C3F9A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3E6CDE57-5FBC-4BE7-BEEB-44BA92634D72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8106BB61-27A7-4A5A-ADDB-385FD1899C72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D93255BE-B846-4116-9CA6-8CA9CFC01D91}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04852EB2-CCF7-4E38-B5EA-FBF3FC5051A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D9C4CCCA-7341-4553-B47D-5E269CC1D766}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{967AC058-7644-4692-874C-54A76331FE50}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

24-12-2020 11:03:17 Scheduled Checkpoint
31-12-2020 23:46:16 Scheduled Checkpoint
08-01-2021 10:33:55 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/13/2021 09:30:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Cortana.exe version 2.2010.22653.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1350

Start Time: 01d6e983e71d31b7

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2010.22653.0_x64__8wekyb3d8bbwe\Cortana.exe

Report Id: acddab4d-a966-4331-97aa-ccba59d49600

Faulting package full name: Microsoft.549981C3F5F10_2.2010.22653.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: App

Hang type: Quiesce

Error: (01/13/2021 09:09:34 AM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: The Windows Security Center Service was unable to load instances of FirewallProduct from datastore.

Error: (01/12/2021 04:54:21 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating status to SECURITY_PRODUCT_STATE_OFF.

Error: (01/12/2021 04:54:21 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating status to SECURITY_PRODUCT_STATE_OFF.

Error: (01/12/2021 04:54:21 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (01/12/2021 09:16:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: devicecensus.exe, verzia: 10.0.19645.1016, časová značka: 0x827fe5ce
Názov chybujúceho modulu: amdihk64.dll_unloaded, verzia: 1.0.0.0, časová značka: 0x5bb6dc88
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000003150
Identifikácia chybujúceho procesu: 0xf00
Čas spustenia chybujúcej aplikácie: 0x01d6e8baac729cad
Cesta chybujúcej aplikácie: C:\WINDOWS\system32\devicecensus.exe
Cesta chybujúceho modulu: amdihk64.dll
Identifikácia hlásenia: def788b1-821f-4c97-b242-26976c8d5f9a
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (01/12/2021 09:14:51 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/10/2021 10:00:54 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (01/13/2021 09:39:52 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-PC68NOG1)
Description: The server Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (01/13/2021 09:18:46 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba System Guard Runtime Monitor Broker sa pri spustení zablokovala.

Error: (01/13/2021 09:16:34 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správca stiahnutých máp sa pri spustení zablokovala.

Error: (01/13/2021 09:14:42 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-PC68NOG1)
Description: The server Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (01/13/2021 09:14:40 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1053" attempting to start the service defragsvc with arguments "Unavailable" in order to run the server:
{D20A3293-3341-4AE8-9AAF-8E397CB63C34}

Error: (01/13/2021 09:14:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Optimalizácia jednotiek zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (01/13/2021 09:14:40 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Optimalizácia jednotiek bol dosiahnutý časový limit (30000 ms).

Error: (01/13/2021 09:12:20 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-PC68NOG1)
Description: The server Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.


CodeIntegrity:
===================================

Date: 2021-01-13 12:37:48.8560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:37:41.7270000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:37:07.8860000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:36:49.8430000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:36:49.4410000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:36:49.4000000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:36:49.3560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-13 12:36:48.4700000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\x86\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 7SCN26WW 10/26/2018
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 61%
Total physical RAM: 6053.22 MB
Available physical RAM: 2314.08 MB
Total Virtual: 10917.22 MB
Available Virtual: 6113.52 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:930.27 GB) (Free:732.72 GB) NTFS

\\?\Volume{36366fa9-86ef-498a-89f3-3bed2644f3e6}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.51 GB) NTFS
\\?\Volume{bae70048-da88-426b-be73-b1c4f9b50336}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 17991C67)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Ran by Jana (administrator) on LAPTOP-PC68NOG1 (LENOVO 81F5) (13-01-2021 12:42:01)
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana
Platform: Windows 10 Home Version 2004 19041.685 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adaware Software -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareService.exe
(Adaware Software -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0324672.inf_amd64_25422756be012b8f\B321356\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0324672.inf_amd64_25422756be012b8f\B321356\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <2>
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_0219cc1c7085a93f\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_08c6076a1ac36ac6\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_08c6076a1ac36ac6\IntelCpHeciSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.18.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.3.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\Jana\AppData\Roaming\Zoom\bin\Zoom.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [834552 2019-03-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe [4742616 2018-12-19] (Adaware Software -> )
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614832 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [3708672 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Jana\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-12-20] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\...\Run: [AVGBrowserAutoLaunch_9392C5416D21222CA2289E683DF5B73F] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1980624 2021-01-05] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\WINDOWS\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.1.7549.90\Installer\chrmstp.exe [2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies)
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02CDD2BB-04D0-4827-BA2F-DDF33BBE3288} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2497212874-3784736307-1135634520-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-11] (Microsoft Windows -> )
Task: {03F64C2D-47CA-49B9-A72D-EBDF14CE7A2F} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5495432 2020-11-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {0C17DC0E-E339-4490-AF41-6E9070BAD94E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {175335C2-99E4-4B39-9C7E-972201EBD95E} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812664 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 70bc2f1f-f243-4599-aefd-e8da33bb8653
Task: {2010ABF4-BA6F-4D61-A218-468A1759F24D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2533FFC4-9775-404F-97CA-BE5FA928E0B4} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1980624 2021-01-05] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {25723017-3EC1-4546-80DC-8AF5B359392C} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {2E70854B-4B0B-420D-B838-1D553E25F1F9} - System32\Tasks\WpsNotifyTask_Jana => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsnotify.exe [364376 2013-12-26] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {3798FA9C-D7FA-487B-828B-7814DD5A57D0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b205f7f5-37d5-4ebb-9a89-07c839079fb5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {5C3DD4DC-B038-4B81-9939-D1049BA031A7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {5D3D2FFD-3F3A-4BF3-B78F-14E91493810C} - System32\Tasks\WpsUpdateTask_Jana => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe [390488 2013-12-26] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {5E7CA278-1466-4F16-B645-AEC5FBE3EA9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {65D41137-CBBB-40B8-811F-E94C1CED924F} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7C956316-0DA1-4636-98C7-56D4E5CF396D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BD3D1A3-279A-418F-8964-43968F8A4786} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b62a5c13-f5e3-4061-b1a4-3854332f5435 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {B458C0EA-9115-4420-BF63-060514F0173F} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [5544192 2021-01-04] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {B4985BF7-81AB-4E0F-B780-19A86789F7AC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-10-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B5FDB0E8-6638-4EE5-9694-1B2151B0B1EE} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\704d2f3a-852c-4e7b-aef4-f36ae9c50396 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {BBEA418B-D044-4415-8866-FCF209CB46B2} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {BEA8ACF2-6894-4776-B5E6-1E76505FB2CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {CAD08108-08B7-437D-B1E9-45B5692230ED} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f4982049-ec15-4375-a722-e0a44281018c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {CC0E77CB-2A9F-40A0-AABE-D939B6F566B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {CC4E8584-220B-47AB-9FCF-627A25371A2B} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D151EE4D-113D-49BC-B459-08B86AB6ED70} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D1EE8DA5-EEF9-4282-B2B4-831606E44636} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4648192 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid eaf78076-fecf-4780-acd1-73e2fe6d210a
Task: {D2412234-5425-488E-8C5D-928425D3CB70} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1980624 2021-01-05] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D77F8450-5068-4556-85D4-209EF2077D5A} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {E62A0F34-AE6D-496F-85F9-4173872DFC04} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {E62EC179-BFFE-4BF3-86DE-A97EB2850FA2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {F71BFCFB-25EB-40B3-916B-BF0745332F59} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {FFAC18CF-E1A7-4C66-A285-89F16148CA0A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\WpsNotifyTask_Jana.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Jana.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{5403f52c-42f8-4d90-893e-352fc074c17b}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{74d22c3a-87cd-4d39-bbee-ecc610bf5ea7}: [DhcpNameServer] 150.212.1.3
Tcpip\..\Interfaces\{ae90eb59-5481-4a92-86d5-6f9ee906ee51}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
======
Edge Profile: C:\Users\Jana\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-13]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default [2021-01-13]
CHR Notifications: Default -> hxxps://kemerovobarberwanted.ru; hxxps://teams.microsoft.com; hxxps://www.izlato.sk; hxxps://www.tipli.sk
CHR Extension: (Prezentácie) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-19]
CHR Extension: (Dokumenty) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-19]
CHR Extension: (Disk Google) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (YouTube) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-19]
CHR Extension: (Tabuľky) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-19]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2019-07-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-12]
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-28]
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareService.exe [587832 2018-12-19] (Adaware Software -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [1230680 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.1.7549.90\elevation_service.exe [1195472 2021-01-05] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12976336 2020-12-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602632 2018-07-31] (Dolby Laboratories, Inc. -> )
R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [5987584 2021-01-06] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [288200 2018-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-07-12] (Mixbyte Inc -> Freemake)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208808 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332944 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2021-01-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42568 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176528 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [522616 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109064 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84640 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851392 2021-01-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214936 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [325056 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [442848 2018-05-02] (Bitdefender SRL -> BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-13 12:42 - 2021-01-13 12:45 - 000026798 _____ C:\Users\Jana\Desktop\FRST.txt
2021-01-12 19:54 - 2021-01-12 19:56 - 000000000 ____D C:\AdwCleaner
2021-01-12 19:53 - 2021-01-12 19:53 - 008458096 _____ (Malwarebytes) C:\Users\Jana\Downloads\adwcleaner_8.0.9.exe
2021-01-12 19:53 - 2021-01-12 19:53 - 008458096 _____ (Malwarebytes) C:\Users\Jana\Desktop\adwcleaner_8.0.9.exe
2021-01-12 18:50 - 2021-01-12 18:51 - 006626943 _____ C:\Users\Jana\Downloads\Lesné obojživelníky - prezentácia s videami.pptx
2021-01-12 18:39 - 2021-01-12 18:40 - 005696204 _____ C:\Users\Jana\Downloads\Bunka.pptx
2021-01-12 18:39 - 2021-01-12 18:39 - 001274367 _____ C:\Users\Jana\Downloads\Rastlinná a živočíšna bunka (1).pptx
2021-01-12 18:37 - 2021-01-12 18:38 - 002193408 _____ C:\Users\Jana\Downloads\09_Rastlinná a živočíšná bunka.ppt.ppt
2021-01-12 18:36 - 2021-01-12 18:37 - 007509250 _____ C:\Users\Jana\Downloads\Rastlinná a živočíšna bunka.pptx
2021-01-12 18:01 - 2021-01-12 18:01 - 000691712 _____ C:\Users\Jana\Downloads\Essen.ppt
2021-01-12 17:53 - 2021-01-12 17:53 - 001673148 _____ C:\Users\Jana\Downloads\ESSEN UND TRINKEN - PEXESO.pptx
2021-01-12 16:58 - 2021-01-13 12:43 - 000000000 ____D C:\FRST
2021-01-12 16:56 - 2021-01-12 16:56 - 002281472 _____ (Farbar) C:\Users\Jana\Downloads\FRST64.exe
2021-01-12 16:56 - 2021-01-12 16:56 - 002281472 _____ (Farbar) C:\Users\Jana\Desktop\FRST64.exe
2021-01-12 09:19 - 2021-01-12 09:19 - 002401918 _____ C:\Users\Jana\Downloads\Hubblov vesmírny ďalekohľad.pdf
2021-01-10 23:05 - 2021-01-10 23:05 - 002150588 _____ C:\Users\Jana\Downloads\Meranie prúdu.pptx
2021-01-10 23:04 - 2021-01-10 23:04 - 000156659 _____ C:\Users\Jana\Downloads\Fyzikálna veličina elektrický prúd. Meranie prúdu.pptx
2021-01-10 23:03 - 2021-01-10 23:03 - 001810829 _____ C:\Users\Jana\Downloads\Elektrický prúd ako fyzikálna veličina. Meranie elektrického prúdu.pptx
2021-01-10 22:44 - 2021-01-10 22:44 - 000251024 _____ C:\Users\Jana\Downloads\Gravitačná sila a hmotnosť telesa (1).pptx
2021-01-10 22:41 - 2021-01-10 22:41 - 000650883 _____ C:\Users\Jana\Downloads\Gravitačná sila a hmotnosť telesa.pptx
2021-01-10 22:30 - 2021-01-10 22:30 - 000986429 _____ C:\Users\Jana\Downloads\Tuhnutie.pptx
2021-01-10 22:13 - 2021-01-10 22:13 - 001050285 _____ C:\Users\Jana\Downloads\Meranie objemu pevných telies.pptx
2021-01-05 18:32 - 2021-01-05 18:32 - 000267436 _____ C:\Users\Jana\Downloads\2 (1).pdf
2021-01-03 17:35 - 2021-01-03 17:35 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Skype
2021-01-01 22:18 - 2021-01-01 22:18 - 000248034 _____ C:\Users\Jana\Downloads\7 (1).pdf
2021-01-01 22:17 - 2021-01-01 22:17 - 000111266 _____ C:\Users\Jana\Downloads\derivacia.pdf
2021-01-01 17:11 - 2021-01-07 21:05 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2021-01-01 17:11 - 2021-01-01 17:09 - 000341128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-31 22:55 - 2020-12-31 22:55 - 000248034 _____ C:\Users\Jana\Downloads\7.pdf
2020-12-24 10:41 - 2020-12-24 10:41 - 001352371 _____ C:\Users\Jana\Downloads\20191011_92820__0.pptx
2020-12-23 22:36 - 2020-12-23 22:36 - 001648700 _____ C:\Users\Jana\Downloads\Grupy.pdf
2020-12-23 22:23 - 2020-12-23 22:23 - 000518369 _____ C:\Users\Jana\Downloads\20161027_145546__0 (2).pptx
2020-12-23 22:16 - 2020-12-23 22:16 - 001358071 _____ C:\Users\Jana\Downloads\20201015_223637__0.pptx
2020-12-22 17:18 - 2020-12-22 17:18 - 006170795 _____ C:\Users\Jana\Downloads\algebra_1_cb_(www.studujes.sk).pdf
2020-12-21 22:35 - 2020-12-21 22:35 - 000267436 _____ C:\Users\Jana\Downloads\2.pdf
2020-12-21 22:06 - 2020-12-21 22:06 - 000121247 _____ C:\Users\Jana\Downloads\algebraicke_struktury_(www.studujes.sk).pdf
2020-12-20 18:30 - 2020-12-20 18:30 - 009088221 _____ C:\Users\Jana\Downloads\Eliáš horvát kajan - zbierka-uloh-z-vyssej-matematiky-2[1].pdf
2020-12-20 15:24 - 2020-12-20 15:24 - 000002370 _____ C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-12-20 15:24 - 2020-12-20 15:24 - 000002362 _____ C:\Users\Jana\Desktop\Microsoft Teams.lnk
2020-12-20 15:24 - 2020-12-20 15:24 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Teams
2020-12-19 21:59 - 2020-12-19 21:59 - 000046342 _____ C:\Users\Jana\Downloads\Dochádzka Žulkovská.xlsx
2020-12-18 20:23 - 2020-12-18 20:23 - 001123466 _____ C:\Users\Jana\Downloads\ivočíchy v blízkosti ľudských sídel.pptx
2020-12-18 20:23 - 2020-12-18 20:23 - 000128418 _____ C:\Users\Jana\Downloads\Prezentacia Biologia.odp
2020-12-18 20:20 - 2020-12-18 20:20 - 001335100 _____ C:\Users\Jana\Downloads\Zemetrasenie (5).pptx
2020-12-18 19:47 - 2020-12-18 19:47 - 002698934 _____ C:\Users\Jana\Downloads\Zemetrasenie (4).pptx
2020-12-18 18:38 - 2020-12-18 18:38 - 000002392 _____ C:\Users\Jana\Downloads\1608313132448.ics
2020-12-17 21:43 - 2020-12-17 21:43 - 001868999 _____ C:\Users\Jana\Downloads\BD03576B-A75E-4C7B-85C4-B4D37A189034.jpeg
2020-12-17 10:06 - 2020-12-17 10:06 - 013411139 _____ C:\Users\Jana\Downloads\Richard-Havel-prezentácia.pptx
2020-12-16 22:25 - 2020-12-16 22:25 - 000738670 _____ C:\Users\Jana\Downloads\Zemetrasenie (3).pptx
2020-12-16 22:22 - 2020-12-16 22:23 - 001487059 _____ C:\Users\Jana\Downloads\Zemetrasenie (2).pptx
2020-12-16 22:20 - 2020-12-16 22:20 - 000431014 _____ C:\Users\Jana\Downloads\PowerPoint zemetrasenie.html
2020-12-16 22:18 - 2020-12-16 22:18 - 002098631 _____ C:\Users\Jana\Downloads\Zemetrasenie v Indickom oceáne 26. decembra 2004.pptx
2020-12-16 22:10 - 2020-12-16 22:10 - 002315208 _____ C:\Users\Jana\Downloads\Premena hornín a premenené horniny.pptx
2020-12-16 22:10 - 2020-12-16 22:10 - 001538560 _____ C:\Users\Jana\Downloads\Premena hornín+ premenené horniny.ppt
2020-12-16 22:05 - 2020-12-16 22:05 - 001713664 _____ C:\Users\Jana\Downloads\Oporná a pohybová sústava.ppt.ppt
2020-12-16 22:01 - 2020-12-16 22:02 - 001313841 _____ C:\Users\Jana\Downloads\Oporná a pohybová sústava - kosti.pptx
2020-12-16 21:55 - 2020-12-16 21:55 - 000551798 _____ C:\Users\Jana\Downloads\Obeh telových tekutín.ppsx
2020-12-15 21:49 - 2020-12-15 21:50 - 011244544 _____ C:\Users\Jana\Downloads\Chránené živočíchy v blízkosti človeka.ppt.ppt
2020-12-15 21:47 - 2020-12-15 21:48 - 004835328 _____ C:\Users\Jana\Downloads\Chránené živočíchy v blízkosti človeka.ppt
2020-12-15 21:43 - 2020-12-15 21:43 - 004076544 _____ C:\Users\Jana\Downloads\Ľudské sídla a ich okolie 2. časť - živočíchy.ppt
2020-12-15 21:28 - 2020-12-15 21:28 - 002239488 _____ C:\Users\Jana\Downloads\živočíchy v okolí ľudských sídel.ppt
2020-12-15 21:26 - 2020-12-15 21:26 - 006107650 _____ C:\Users\Jana\Downloads\Živočíchy v okolí ľudských sídiel.pptx
2020-12-15 21:23 - 2020-12-15 21:23 - 000001935 _____ C:\Users\Jana\Desktop\Zoom.lnk
2020-12-15 21:23 - 2020-12-15 21:23 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-12-15 21:21 - 2020-12-15 21:21 - 003613015 _____ C:\Users\Jana\Downloads\Drobné lesné živočíchy.pptx
2020-12-15 21:15 - 2020-12-15 21:15 - 015399959 _____ C:\Users\Jana\Downloads\lesné bezstavovce (2).pptx
2020-12-15 16:19 - 2020-12-15 16:19 - 002576896 _____ C:\Users\Jana\Downloads\Nej_Vianoce.pps
2020-12-15 16:17 - 2020-12-15 16:17 - 000726528 _____ C:\Users\Jana\Downloads\Vianoce.ppt
2020-12-15 16:11 - 2020-12-15 16:11 - 000131550 _____ C:\Users\Jana\Downloads\Weihnachten.pdf
2020-12-15 15:37 - 2020-12-15 15:37 - 006175744 _____ C:\Users\Jana\Downloads\Weihnachten_in_Deutschland_Neu.ppt
2020-12-15 15:27 - 2020-12-15 15:27 - 001056768 _____ C:\Users\Jana\Downloads\Weihnachten in Europaländern - Vianoce v európskych krajinách.ppt
2020-12-15 15:21 - 2020-12-15 15:21 - 003787776 _____ C:\Users\Jana\Downloads\Weihnachtliche Traditionen.ppt
2020-12-15 15:19 - 2020-12-15 15:19 - 015875072 _____ C:\Users\Jana\Downloads\Wir feiern Weihnachten.ppt
2020-12-14 22:11 - 2020-12-14 22:11 - 001885327 _____ C:\Users\Jana\Downloads\16_MAT_UCEBNICE_diferencialni_pocet (1).pdf
2020-12-14 21:27 - 2020-12-14 21:28 - 001758175 _____ C:\Users\Jana\Downloads\Filipek.odt
2020-12-14 10:50 - 2020-12-14 10:50 - 001448955 _____ C:\Users\Jana\Downloads\compressPdf_4a224e826986483538d883d0f0f04ca9.zip
2020-12-14 10:45 - 2020-12-14 10:52 - 000744579 _____ C:\Users\Jana\Documents\RL_Viliam.pdf
2020-12-14 10:44 - 2020-12-14 10:52 - 000717758 _____ C:\Users\Jana\Documents\RL_Amalia.pdf
2020-12-14 10:08 - 2020-12-14 10:08 - 000001920 _____ C:\Users\Jana\Desktop\CAS Calculator.lnk
2020-12-14 10:08 - 2020-12-14 10:08 - 000000000 ____D C:\Users\Jana\AppData\Local\GeoGebra_CAS
2020-12-14 10:02 - 2020-12-14 10:08 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra
2020-12-14 10:02 - 2020-12-14 10:02 - 000001974 _____ C:\Users\Jana\Desktop\Graphing Calc.lnk
2020-12-14 10:02 - 2020-12-14 10:02 - 000000000 ____D C:\Users\Jana\AppData\Roaming\GeoGebra
2020-12-14 10:02 - 2020-12-14 10:02 - 000000000 ____D C:\Users\Jana\AppData\Local\GeoGebra_Graphing
2020-12-14 10:00 - 2020-12-14 10:01 - 067634344 _____ (International GeoGebra Institute) C:\Users\Jana\Downloads\GeoGebraGraphing-Windows-Installer-6-0-620-0.exe
2020-12-14 10:00 - 2020-12-14 10:01 - 067604128 _____ (International GeoGebra Institute) C:\Users\Jana\Downloads\GeoGebraCAS-Windows-Installer-6-0-620-0.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-13 12:41 - 2020-11-30 13:00 - 000003310 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b0c6a6277e38
2021-01-13 12:41 - 2020-11-02 04:43 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-13 12:41 - 2020-11-02 04:43 - 000003492 _____ C:\WINDOWS\system32\Tasks\LenovoUtility Task
2021-01-13 12:41 - 2020-11-02 04:43 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-01-13 12:41 - 2020-11-02 04:43 - 000003384 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-13 12:41 - 2020-11-02 04:43 - 000003352 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{74C7168C-B6DB-4B68-8C9E-9A6C8D599011}
2021-01-13 12:41 - 2020-11-02 04:43 - 000003280 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-13 12:41 - 2020-11-02 04:43 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2021-01-13 12:41 - 2020-11-02 04:43 - 000003160 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-13 12:41 - 2020-11-02 04:43 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2497212874-3784736307-1135634520-1001
2021-01-13 12:41 - 2020-11-02 04:43 - 000002770 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2021-01-13 12:41 - 2020-11-02 04:43 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-01-13 12:41 - 2020-11-02 04:43 - 000002116 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-01-13 12:41 - 2020-11-02 04:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-01-13 12:34 - 2020-11-02 03:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-13 12:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-13 09:22 - 2020-11-02 04:43 - 000003418 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_Jana
2021-01-13 09:22 - 2020-11-02 04:43 - 000003418 _____ C:\WINDOWS\system32\Tasks\WpsNotifyTask_Jana
2021-01-13 09:22 - 2019-08-28 17:37 - 000000404 _____ C:\WINDOWS\Tasks\WpsUpdateTask_Jana.job
2021-01-13 09:22 - 2019-08-28 17:37 - 000000404 _____ C:\WINDOWS\Tasks\WpsNotifyTask_Jana.job
2021-01-13 09:14 - 2019-08-20 14:13 - 000000000 ____D C:\ProgramData\AVG
2021-01-13 09:09 - 2020-11-02 04:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-13 09:08 - 2020-11-02 03:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-13 09:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-13 09:07 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-12 20:01 - 2020-11-28 17:20 - 000000000 ____D C:\Users\Jana\Desktop\ZS Unin
2021-01-12 20:01 - 2020-05-17 17:54 - 000000000 ____D C:\Users\Jana\Desktop\Osobne
2021-01-12 19:56 - 2020-02-24 16:55 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Lavasoft
2021-01-12 19:56 - 2020-02-24 16:55 - 000000000 ____D C:\Users\Jana\AppData\Local\Lavasoft
2021-01-12 19:56 - 2020-02-24 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2021-01-12 19:56 - 2020-02-24 16:55 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-01-12 19:56 - 2020-02-24 16:54 - 000000000 ____D C:\ProgramData\Lavasoft
2021-01-12 19:56 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-01-12 18:48 - 2019-07-17 01:28 - 000000000 ____D C:\Users\Jana\AppData\Local\Packages
2021-01-12 16:44 - 2020-11-02 04:18 - 001733408 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-12 16:44 - 2020-11-02 01:52 - 000696308 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-12 16:44 - 2020-11-02 01:52 - 000142564 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-12 16:44 - 2020-02-11 18:24 - 000099858 _____ C:\WINDOWS\system32\perfh01B.dat
2021-01-12 16:44 - 2020-02-11 18:24 - 000021362 _____ C:\WINDOWS\system32\perfc01B.dat
2021-01-12 16:44 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-12 10:37 - 2019-09-15 16:01 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-01-12 09:33 - 2019-07-19 14:13 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 09:33 - 2019-07-19 14:13 - 000002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-12 09:33 - 2019-07-19 14:13 - 000002279 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-01-10 22:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-10 22:11 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-10 22:10 - 2020-10-06 07:10 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-10 22:10 - 2020-10-06 07:10 - 000002272 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-10 22:10 - 2020-10-06 07:10 - 000002272 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-08 12:58 - 2019-08-20 14:16 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2021-01-07 21:10 - 2019-08-20 14:58 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-07 21:10 - 2019-08-20 14:58 - 000002359 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2021-01-07 21:10 - 2019-08-20 14:58 - 000002359 _____ C:\ProgramData\Desktop\AVG Secure Browser.lnk
2021-01-07 21:04 - 2019-08-20 14:16 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2021-01-06 11:23 - 2019-09-01 16:37 - 000000000 ____D C:\Users\Jana\AppData\Local\ElevatedDiagnostics
2021-01-04 14:57 - 2020-11-23 15:43 - 000134400 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
2021-01-01 17:11 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-01 17:10 - 2020-11-02 14:33 - 000176528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2021-01-01 17:10 - 2020-04-24 15:15 - 000522616 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000247952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000109064 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000097424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000084640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000042568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2021-01-01 17:10 - 2019-08-20 14:16 - 000016832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2021-01-01 17:08 - 2019-08-20 14:16 - 000851392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2021-01-01 17:08 - 2019-08-20 14:16 - 000208808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2021-01-01 17:07 - 2019-08-20 14:16 - 000332944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-24 10:43 - 2020-11-28 17:25 - 000000000 ____D C:\Users\Jana\Desktop\Nitra
2020-12-22 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-20 15:59 - 2020-04-08 10:08 - 000000000 ____D C:\Users\Jana\AppData\Local\SquirrelTemp
2020-12-20 15:28 - 2020-11-02 04:05 - 000002359 _____ C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-20 15:28 - 2019-07-17 01:34 - 000000000 ___RD C:\Users\Jana\OneDrive
2020-12-16 21:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-15 21:23 - 2020-03-31 13:56 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Zoom

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119412
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vyskakujuce okna

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-02-24 03:55:49&bName=
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> DefaultScope {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
C:\Program Files\adaware\adaware antivirus
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe [4742616 2018-12-19] (Adaware Software -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {5E7CA278-1466-4F16-B645-AEC5FBE3EA9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {CC0E77CB-2A9F-40A0-AABE-D939B6F566B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\DumpStack.log.tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Januska25
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 16 lis 2011 10:21

Re: Vyskakujuce okna

#7 Příspěvek od Januska25 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Jana (13-01-2021 13:48:18) Run:1
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-02-24 03:55:49&bName=
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> DefaultScope {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
SearchScopes: HKU\S-1-5-21-2497212874-3784736307-1135634520-1001 -> {521A8A70-0504-4E43-82B5-E034174BAB01} URL =
C:\Program Files\adaware\adaware antivirus
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe [4742616 2018-12-19] (Adaware Software -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {5E7CA278-1466-4F16-B645-AEC5FBE3EA9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
Task: {CC0E77CB-2A9F-40A0-AABE-D939B6F566B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-19] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2497212874-3784736307-1135634520-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{521A8A70-0504-4E43-82B5-E034174BAB01} => removed successfully
C:\Program Files\adaware\adaware antivirus => moved successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdAwareTray" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E7CA278-1466-4F16-B645-AEC5FBE3EA9A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E7CA278-1466-4F16-B645-AEC5FBE3EA9A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CC0E77CB-2A9F-40A0-AABE-D939B6F566B3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC0E77CB-2A9F-40A0-AABE-D939B6F566B3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56823455 B
Java, Flash, Steam htmlcache => 735 B
Windows/system/drivers => 66709258 B
Edge => 23168935 B
Chrome => 742784330 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 73324 B
NetworkService => 92870 B
Jana => 19392617 B

RecycleBin => 0 B
EmptyTemp: => 877 MB temporary data Removed.

================================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119412
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vyskakujuce okna

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Januska25
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 16 lis 2011 10:21

Re: Vyskakujuce okna

#9 Příspěvek od Januska25 »

Vyzera to byt v poriadku :-) Dakujem
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119412
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vyskakujuce okna

#10 Příspěvek od Rudy »

To jsem rád a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“