Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
vlastak23
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 07 úno 2016 10:18

Preventivní kontrola logu

#1 Příspěvek od vlastak23 »

Dobrý den,
prosím o kontrolu,počítač se hodně zasekáva a je pomalý.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-10-2022 01
Ran by Vlas (administrator) on DESKTOP-VDD134O (LENOVO 6258A3G) (08-10-2022 09:54:09)
Running from C:\Users\Vlas\Desktop
Loaded Profiles: Vlas
Platform: Microsoft Windows 10 Pro Version 21H1 19043.2006 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google) C:\Users\Vlas\AppData\Local\Google\Chrome\User Data\SwReporter\104.289.200\software_reporter_tool.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Vlas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(svchost.exe ->) (EUROBYTE SOFTWARE s.r.o. -> OEM) [File not signed] C:\Program Files (x86)\Eurobyte\Cleaner\vp5_ux.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4125408 2022-09-07] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [310128 2013-02-13] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1509232 2013-02-13] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844144 2013-02-13] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [Spotify] => C:\Users\Vlas\AppData\Roaming\Spotify\Spotify.exe [23394024 2020-08-11] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [movavi_videoconverter_agent] => C:\Users\Vlas\AppData\Roaming\Movavi Video Converter 20 Premium\ConverterAgent.exe [1070456 2020-08-16] (Movavi Software Limited -> Movavi)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [Opera Browser Assistant] => C:\Users\Vlas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4137936 2022-09-14] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Run: [MicrosoftEdgeAutoLaunch_3EC3A692C43404D187C778CB6CD15227] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852192 2022-10-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\MountPoints2: {668fe4cf-705a-11eb-bdf2-00241d0a13f0} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109080 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [57880 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.103\Installer\chrmstp.exe [2022-10-06] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7976.151\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0007D2F5-0319-46EA-8407-BA6519E4926D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-23] (Google Inc -> Google Inc.)
Task: {0569F5AD-C44F-4A7F-8FBA-29124526BAA6} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1213152 2022-09-12] (Avast Software s.r.o. -> AVAST Software)
Task: {07787AA2-58F0-4881-BB71-19F8A1B8704E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {0CEB5675-8ABB-4771-9F03-645101707308} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6803168 2022-09-06] (Avast Software s.r.o. -> Avast Software)
Task: {0E65DA84-7581-4929-B1B5-A53D4A2FEA2D} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4737760 2022-09-07] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 1ef03ff1-6b67-4b4e-a72a-50dbb203ab6a
Task: {2A3D7048-0132-4634-8E53-285860A57198} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
Task: {337FF022-DB64-4E4C-BD3C-95B3D3F396CC} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {44011D1F-045C-40B4-89EE-59A018071AD3} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [6694224 2022-09-29] (Avast Software s.r.o. -> Avast Software)
Task: {468FB798-587E-4294-8EE3-FAFDBFA28707} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {5BFD1FA9-A931-4E70-B4D0-45C31640C632} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1d36798a-631a-4734-89ff-20b0a2c06a4f" --version "6.04.10044" --silent
Task: {6546B907-B5AA-4CBC-A54E-605D7CC2EBB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1190424 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {78E1D9E5-F31B-4B31-A273-3F029FEBFA52} - System32\Tasks\Opera scheduled assistant Autoupdate 1598519826 => C:\Users\Vlas\AppData\Local\Programs\Opera\launcher.exe [2534856 2022-10-06] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vlas\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {7E69CB2D-DEEC-4B68-97F1-BC78C191BD25} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {827A56BF-907A-41C2-BBCB-93AA84ED3C14} - System32\Tasks\CCleanerSkipUAC - Vlas => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8389A88B-38B7-4120-9666-5846AA2634F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {A3E01B20-2916-4132-9E1A-94BBA472DB3E} - System32\Tasks\Opera scheduled Autoupdate 1548590260 => c:\users\vlas\appdata\local\programs\opera\launcher.exe [2534856 2022-10-06] (Opera Norway AS -> Opera Software)
Task: {A8A622B3-3D83-46B2-8E2A-9BB2CFE6F59E} - System32\Tasks\vp5_ux => C:\Program Files (x86)\Eurobyte\Cleaner\vp5_ux.exe [49024 2021-09-06] (EUROBYTE SOFTWARE s.r.o. -> OEM) [File not signed]
Task: {C8EF645A-99A8-4742-9F53-5ECB70DB9E8E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {C91BB6F0-8760-4A2C-995F-F331058F2508} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4690144 2022-09-12] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\SecureLine VPN\log" --guid 87d31087-f90d-4836-90ec-af37f3578baf
Task: {CF087739-CBF9-48FD-A321-D208759122B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-23] (Google Inc -> Google Inc.)
Task: {E3E9BEDA-0C11-4D17-B657-FF2A9C281D84} - System32\Tasks\server_cleaner_app => C:\Program Files (x86)\Eurobyte\Cleaner\server.exe [9137928 2021-09-06] (EUROBYTE SOFTWARE s.r.o. -> ) [File not signed]
Task: {F9CD2544-0CD2-4B51-A89C-7CF12BD7E29E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe [1452600 2019-08-22] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b143a770-a2bc-42d2-9fc6-86a41c16a88d}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Vlas\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-08]
Edge Notifications: Default -> hxxps://www.facebook.com

FireFox:
========
FF DefaultProfile: w0x9a2vd.default
FF ProfilePath: C:\Users\Vlas\AppData\Roaming\Mozilla\Firefox\Profiles\w0x9a2vd.default [2021-12-10]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Vlas\AppData\Roaming\Mozilla\Firefox\Profiles\w0x9a2vd.default\Extensions\sp@avast.com.xpi [2019-02-06]
FF ProfilePath: C:\Users\Vlas\AppData\Roaming\Mozilla\Firefox\Profiles\3vkkc437.default-release [2022-10-07]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Vlas\AppData\Local\Google\Chrome\User Data\Default [2022-10-08]
CHR Notifications: Default -> hxxps://babnotherstantold.info; hxxps://cz.pinterest.com; hxxps://euroshare.eu; hxxps://fastshare.cz; hxxps://gatonsenropha.info; hxxps://gotech.life; hxxps://notube.net; hxxps://novaplus.nova.cz; hxxps://premiumbros.com; hxxps://satertunjus.info; hxxps://svetserialu.to; hxxps://theratrepandne.info; hxxps://www.banggood.com; hxxps://www.emimino.cz; hxxps://www.facebook.com; hxxps://www.file-up.org; hxxps://www.gametwist.com; hxxps://www.kupi.cz; hxxps://www.letgo.cz; hxxps://www.megaknihy.cz; hxxps://www.svetandroida.cz; hxxps://www.youtube.com; hxxps://ytmp3.cc
CHR StartupUrls: Default -> "hxxps://login.szn.cz/"
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vlas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Vlas\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-10-07]
CHR Profile: C:\Users\Vlas\AppData\Local\Google\Chrome\User Data\System Profile [2022-10-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

Opera:
=======
OPR Profile: C:\Users\Vlas\AppData\Roaming\Opera Software\Opera Stable [2022-10-08]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Vlas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-05-08]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Vlas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-08]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513560 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2018528 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [15464160 2022-09-07] (Avast Software s.r.o. -> AVAST Software)
S3 GoogleChromeElevationService1d4b641c5941e64; C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.103\elevation_service.exe [1675544 2022-10-05] (Google LLC -> Google LLC)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [9281760 2022-09-12] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-04-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-04-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-07-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [65944 2022-06-09] (Avast Software s.r.o. -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [37104 2021-07-08] (Avast Software s.r.o. -> WireGuard LLC)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 DrvAgent64; C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [22200 2017-11-25] (eSupport.com, Inc. -> Phoenix Technologies)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-04-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-04-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-04-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-08 09:54 - 2022-10-08 09:58 - 000024988 _____ C:\Users\Vlas\Desktop\FRST.txt
2022-10-08 09:53 - 2022-10-08 09:53 - 000000000 ____D C:\Users\Vlas\Desktop\FRST-OlderVersion
2022-10-05 14:43 - 2022-10-05 19:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-09-30 08:52 - 2022-10-08 09:06 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-30 08:52 - 2022-10-08 09:06 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-29 14:05 - 2022-09-29 14:05 - 000188991 _____ C:\Users\Vlas\Downloads\EE_OP_181201.pdf
2022-09-29 14:05 - 2022-09-29 14:05 - 000100984 _____ C:\Users\Vlas\Downloads\A02_Informace pro spotrebitele.pdf
2022-09-29 14:04 - 2022-09-29 14:04 - 000261664 _____ C:\Users\Vlas\Downloads\Smlouva - elektrina.pdf
2022-09-25 15:51 - 2022-09-25 21:27 - 3251819157 _____ C:\Users\Vlas\Downloads\Severan - The Northman (2022)(FullHD 1080p)(CZ Dabing).mkv
2022-09-22 19:59 - 2022-09-22 19:59 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-22 19:59 - 2022-09-22 19:59 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-09-18 19:57 - 2022-09-18 20:52 - 304632700 _____ C:\Users\Vlas\Downloads\Vyšehrad - Fylm CZ 2022.mp4
2022-09-18 14:02 - 2022-09-18 14:03 - 000465808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-15 08:23 - 2022-10-07 22:31 - 000003756 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1598519826
2022-09-14 12:09 - 2022-09-14 12:09 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 12:07 - 2022-09-14 12:07 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 12:07 - 2022-09-14 12:07 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 12:07 - 2022-09-14 12:07 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-14 12:06 - 2022-09-14 12:06 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 11:06 - 2022-09-14 11:06 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-08 10:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-08 10:08 - 2017-11-23 15:29 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-08 10:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-08 10:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-08 09:56 - 2021-12-09 20:21 - 000000000 ____D C:\FRST
2022-10-08 09:53 - 2021-12-09 20:19 - 002372096 _____ (Farbar) C:\Users\Vlas\Desktop\FRST64.exe
2022-10-08 09:50 - 2020-06-09 04:08 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-08 09:50 - 2020-06-09 04:08 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-10-08 09:42 - 2020-11-28 12:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-08 09:33 - 2018-07-12 19:18 - 000000000 ____D C:\Users\Vlas\AppData\Local\AVAST Software
2022-10-08 09:12 - 2020-02-14 17:35 - 000000000 ____D C:\Users\Vlas\AppData\LocalLow\Mozilla
2022-10-08 09:06 - 2017-11-23 15:53 - 000000000 ____D C:\Program Files\CCleaner
2022-10-07 22:31 - 2021-12-15 20:20 - 000003594 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1548590260
2022-10-07 22:31 - 2021-12-14 20:37 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-337040783-3915424935-998034116-1001
2022-10-07 22:31 - 2021-09-09 21:00 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Vlas
2022-10-07 22:31 - 2021-09-09 20:56 - 000002444 _____ C:\WINDOWS\system32\Tasks\vp5_ux
2022-10-07 22:31 - 2021-09-09 20:56 - 000002442 _____ C:\WINDOWS\system32\Tasks\server_cleaner_app
2022-10-07 22:31 - 2020-11-28 13:06 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-07 22:31 - 2020-11-28 13:06 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-10-07 22:31 - 2020-11-28 13:06 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-07 22:31 - 2020-11-28 13:06 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-10-07 22:31 - 2020-11-28 13:06 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-07 22:31 - 2020-11-28 13:06 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-337040783-3915424935-998034116-1001
2022-10-07 22:31 - 2020-11-28 13:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-07 21:05 - 2018-07-19 15:45 - 000000000 ____D C:\Users\Vlas\AppData\Local\CrashDumps
2022-10-07 16:57 - 2019-01-27 13:57 - 000001402 _____ C:\Users\Vlas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2022-10-06 07:36 - 2019-01-27 15:11 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-10-06 07:36 - 2017-11-23 15:31 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-05 19:15 - 2022-02-01 14:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-05 19:15 - 2020-02-14 17:35 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-05 19:15 - 2020-02-14 17:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-30 18:01 - 2020-11-28 13:06 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-28 08:52 - 2020-12-17 19:02 - 000002374 _____ C:\Users\Vlas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-26 21:08 - 2018-12-17 21:37 - 000000000 ____D C:\Users\Vlas\AppData\Roaming\vlc
2022-09-25 15:43 - 2017-11-23 15:54 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-25 15:42 - 2021-02-15 12:46 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2022-09-25 15:42 - 2020-11-28 13:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-25 15:42 - 2020-11-28 12:32 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-25 15:40 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-22 19:59 - 2020-10-13 14:40 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-22 19:59 - 2020-04-22 09:02 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-22 19:59 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-22 19:59 - 2019-01-04 13:38 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-22 19:59 - 2019-01-04 13:38 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-22 19:59 - 2018-12-15 14:58 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-22 19:59 - 2018-05-14 17:35 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-22 19:59 - 2018-05-14 17:35 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-22 19:59 - 2018-05-14 17:35 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-22 19:59 - 2018-05-14 17:35 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-09-22 19:58 - 2019-01-16 18:02 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-22 19:58 - 2018-05-14 17:35 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-22 19:58 - 2018-05-14 17:35 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-22 08:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-14 12:50 - 2020-11-28 12:50 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-14 12:50 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-09-14 12:50 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-09-14 12:38 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-14 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-14 12:24 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-14 12:06 - 2020-11-28 12:36 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-14 10:52 - 2017-11-30 20:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 10:44 - 2017-11-30 20:31 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-11 07:14 - 2017-11-23 15:26 - 000000000 ____D C:\Users\Vlas\AppData\Local\Packages

==================== Files in the root of some directories ========

2021-02-01 17:33 - 2021-02-01 17:34 - 000000192 _____ () C:\Users\Vlas\AppData\Roaming\varicad-work.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-10-2022 01
Ran by Vlas (08-10-2022 10:14:51)
Running from C:\Users\Vlas\Desktop
Microsoft Windows 10 Pro Version 21H1 19043.2006 (X64) (2020-11-28 11:08:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-337040783-3915424935-998034116-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-337040783-3915424935-998034116-503 - Limited - Disabled)
Guest (S-1-5-21-337040783-3915424935-998034116-501 - Limited - Disabled)
Vlas (S-1-5-21-337040783-3915424935-998034116-1001 - Administrator - Enabled) => C:\Users\Vlas
WDAGUtilityAccount (S-1-5-21-337040783-3915424935-998034116-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.1.3.26837 - emc, uTorrent.CZ)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.238 - Adobe)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824298644}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 22.3.12193.8260 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.20.6633.5102 - Avast Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.76.1090 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
CrystalDiskInfo 7.5.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.0 - Crystal Dew World)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.103 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.500 - Huawei Technologies Co., Ltd.)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
KMPlayer (HKLM\...\The KMPlayer) (Version: 4.2.2.34 - PandoraTV)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.60 - PandoraTV)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.37 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.34 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\OneDriveSetup.exe) (Version: 22.186.0904.0001 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Speech Platform SDK (x86) v11.0 (HKLM-x32\...\{A946A6CC-E9F2-44A8-9A8D-095C756AF4EB}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Speech Platform SDK Xbox Extensions (x86) v11.0 (HKLM-x32\...\{EECDD185-7E84-49AA-B52D-2BAF21366EAE}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.15.26706 (HKLM\...\{F106B700-BFF8-3065-B305-14D36AD40539}) (Version: 14.15.26706 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.15.26706 (HKLM\...\{C77195A4-CEB8-38EE-BDD6-C46CB459EF6E}) (Version: 14.15.26706 - Microsoft Corporation) Hidden
Movavi Video Converter 20 Premium (HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Movavi Video Converter 20 Premium) (Version: 20.2.1 - Movavi)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 105.0.2 (x64 cs)) (Version: 105.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 73.0 - Mozilla)
MPC-HC 1.7.8 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.8 - MPC-HC Team)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Opera Stable 91.0.4516.65 (HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Opera 91.0.4516.65) (Version: 91.0.4516.65 - Opera Software)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 220106 - Kakao Corp.)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.18.0 - SAMSUNG Electronics Co., Ltd.)
Spotify (HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\Spotify) (Version: 1.1.39.612.g1e7e78a4 - Spotify AB)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.24.2.0_x64__kgqvnymyfvs32 [2022-10-06] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.228.300.0_x64__kgqvnymyfvs32 [2022-10-06] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_7.2.10.0_x86__h6adky7gbf63m [2022-09-14] (Gameloft SE)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_6.7.1.0_x86__h6adky7gbf63m [2022-10-05] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-29] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad]
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2019-06-02] (WinZip Computing)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-337040783-3915424935-998034116-1001_Classes\CLSID\{CD663CD4-11EA-4879-B02F-4CFCE8B3C617}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-22] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============


==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-02-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-02-26] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2021-12-10 10:54 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-337040783-3915424935-998034116-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_B17A56B6C3C0CD9E17378445CA63C2EE"
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => "KiesPreload"
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => ""
HKU\S-1-5-21-337040783-3915424935-998034116-1001\...\StartupApproved\Run: => "Spotify"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0A6F7967-ED40-470F-B227-C55C51730D90}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{C9D27856-24D5-4CB1-ACAD-CF9F003FF74A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [TCP Query User{05B1700A-0E58-417F-9B53-8AC9F6292D16}C:\users\vlas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\vlas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5EB856E8-4514-49AE-85F2-41183F848F23}C:\users\vlas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\vlas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D206BAC0-B37E-40D4-AD1D-FC7684BF5140}C:\users\vlas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\vlas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{43636D8A-E98E-446F-A7B6-D146D04D2926}C:\users\vlas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\vlas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C6CF8EE0-C876-49AB-A774-F92D9D654051}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B02F29B7-7161-4D02-B11E-C8C180F5C1B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{F981A1B0-622E-4361-92F8-A0F1AEC66DFF}C:\users\vlas\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\vlas\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{63AF3CD2-7A24-4980-9184-747AC47A12EC}C:\users\vlas\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\vlas\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{46DCCF52-95B9-49B2-B4AB-72371FEE0A5B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5C6B7ADB-DEC4-4684-8FCF-4D3B539ADEB9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{49BBB1C1-89D0-4F4E-986D-AAD4771E4DF0}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2C400A06-78BD-4977-8B6E-0C253E172B53}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{85BAFED2-7306-4678-97E0-F18CB34FE8B8}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6EFAC68D-D3EA-4389-957F-C477D38634A2}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{01D04219-1DED-4911-8323-D73D5E2A425B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5E83729D-2E62-4DE3-A79B-746984544DA2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0293DBBD-D284-4AB5-955D-3B35CEC73869}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2A1E1B5C-3709-4285-87D0-05B0F8BACE6A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3AF1C63A-B788-42DA-8D05-6CB2E2D77D37}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{06D953E4-89E6-43F2-B84F-5D0C9A781BC6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A7E8A62E-6B1C-4790-A4C4-51218C9798FF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CFCC81D-1C48-417C-A288-9651FFD17D77}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FA925100-B492-488B-938E-0D24D1638C49}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2B410AE7-106F-466B-88B7-4072D1E80578}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AD9ECE42-4030-4920-809B-DCB5134C778B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{ACF5AE7D-E0FF-47FF-BC1F-7B83190437F4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0D4AF0AD-CD35-447A-AA4C-B2155EF37C21}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E33101FB-674D-42F7-8E42-A596B5F712B0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{08270E9A-EDE8-41AF-82E6-387DBCD01A9E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD4DE292-89A9-4F22-85BB-E3E69D200590}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB0BB03C-3068-48DA-95AE-8D4B4F47E869}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F996000B-A20D-4FA4-B51A-369AB56AA083}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F887AA2F-ADE7-43AA-AEDD-49D7B95D6ABF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1348A0F5-5E8F-49CB-8F75-9D3C745B2FFA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E556C0FD-74D8-4732-9408-7955CC2EA438}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{767FA8FF-07ED-451A-ABEC-7AE0BCE2D660}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{290CDAC5-E1B2-425B-9045-08FE51F73FFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FD22A5A7-BA52-46BC-A062-3F41C9A9CD40}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A0BB3433-56A3-47C7-9EBF-CA87BEAE6CE5}] => (Allow) c:\users\vlas\appdata\local\programs\opera\90.0.4480.84\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{08143B43-3E22-4C44-B6AF-13BC349B79D7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F5202AB3-1788-4123-BFC7-81B31BD9F299}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C4E0DE27-183D-4529-81E4-3F7F569DC6E9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3CBF673F-9E63-449D-8591-29EE7735C0A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D35BE252-8CB1-4590-9C05-06B0F788D3CF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3F7C854A-28DD-41E0-BFF5-4612E452AA5D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{18BFAB87-1C9C-45F8-92B3-C23026AF41D6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{17A17195-D0E1-4742-83E9-85AE730300C0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.34\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FF3D7E82-4242-4801-BA6F-794F6E39376B}] => (Allow) c:\users\vlas\appdata\local\programs\opera\91.0.4516.65\opera.exe (Opera Norway AS -> Opera Software)

==================== Restore Points =========================

22-09-2022 21:18:23 Naplánovaný kontrolní bod
01-10-2022 15:39:17 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: Sériový port sběrnice PCI
Description: Sériový port sběrnice PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (10/07/2022 09:05:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.1949, časové razítko: 0x3fae0d15
Název chybujícího modulu: SearchApi.dll, verze: 10.0.19041.1949, časové razítko: 0x45996b06
Kód výjimky: 0x80000003
Posun chyby: 0x00000000001911ca
ID chybujícího procesu: 0x230c
Čas spuštění chybující aplikace: 0x01d8da785a256980
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApi.dll
ID zprávy: 7336f7f8-c20c-41c4-8e8c-8321d7fce9f7
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (10/07/2022 08:56:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 106.0.5249.103 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1c84

Čas spuštění: 01d8da652d0947b0

Čas ukončení: 60000

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: 67e56308-5d03-451a-a5fb-277503136af4

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-thread

Error: (10/07/2022 08:15:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.1949 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 37b4

Čas spuštění: 01d8da5aa0a95136

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: a1941f50-b26c-4760-aea7-5e2321a864de

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

Error: (10/07/2022 06:26:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2022.30070.26007.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2740

Čas spuštění: 01d8da5ca3738c71

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID hlášení: 628bc9c7-31d7-4073-9818-76070ad3ed06

Úplný název balíčku s chybou: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (10/07/2022 04:50:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.1949 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 15c4

Čas spuštění: 01d8da5b39fb3126

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: 2073b68a-5248-452c-b8c8-ccc58f139b22

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: ShellFeedsUI

Typ zablokování: Quiesce

Error: (10/01/2022 07:14:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.1949 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1bf0

Čas spuštění: 01d8d5972adc2545

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: 3b68ff00-7a84-472c-a403-6ee36c2f3b33

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: ShellFeedsUI

Typ zablokování: Quiesce

Error: (10/01/2022 03:39:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (09/30/2022 08:53:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.1949, časové razítko: 0x97a1a31c
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x727577d0
ID chybujícího procesu: 0x16ec
Čas spuštění chybující aplikace: 0x01d8d4995b68298c
Cesta k chybující aplikaci: C:\WINDOWS\SysWOW64\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 38ab2f74-252f-4dd3-bfc3-0ab0caad5b55
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (10/07/2022 10:35:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VDD134O)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/07/2022 10:35:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VDD134O)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/07/2022 08:03:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VDD134O)
Description: Server Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/07/2022 07:22:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VDD134O)
Description: Server {283EDD52-69B2-473D-BEB6-2C0B4C01FD73} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/07/2022 07:09:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AppX Deployment Service (AppXSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/07/2022 07:09:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AppX Deployment Service (AppXSVC) bylo dosaženo časového limitu (30000 ms).

Error: (10/07/2022 07:08:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {D726464B-98F1-4627-86CD-4A082A1E5307} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/07/2022 06:49:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VDD134O)
Description: Server Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2022-10-08 09:45:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-10-08 08:59:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 5CKT48AUS 04/24/2009
Motherboard: LENOVO LENOVO
Processor: Intel(R) Core(TM)2 Duo CPU E7300 @ 2.66GHz
Percentage of memory in use: 86%
Total physical RAM: 3567.11 MB
Available physical RAM: 492.64 MB
Total Virtual: 14299.79 MB
Available Virtual: 10208.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.71 GB) (Free:126.04 GB) (Model: Hitachi HDS721050CLA660) NTFS

\\?\Volume{c1c903e7-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c1c903e7-0000-0000-0000-005074000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C1C903E7)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=522 MB) - (Type=27)

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#2 Příspěvek od JaRon »

Ahoj,
s prikazoveho riadku spust sfc /scannow
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

vlastak23
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 07 úno 2016 10:18

Re: Preventivní kontrola logu

#3 Příspěvek od vlastak23 »

Po scanovani

Windows Resource Protection did not find any integrity violations.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#4 Příspěvek od JaRon »

pozri aku velkost ma adresar plocha/desktop ? nemal by presahovat 1GB
+
prescanuj s ADWCleanerom - preventivne
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

vlastak23
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 07 úno 2016 10:18

Re: Preventivní kontrola logu

#5 Příspěvek od vlastak23 »

Ma 149 GB,ale to je nejake divne.ne? :)

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-12-2022
# Duration: 00:00:48
# OS: Windows 10 Pro
# Scanned: 27445
# Detected: 7


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy C:\ProgramData\BSD\DriverHiveEngine
PUP.Optional.TweakBit C:\ProgramData\BSD\DriverHive

***** [ Files ] *****

PUP.Optional.Legacy C:\END

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Conduit HKLM\Software\Wow6432Node\Conduit
PUP.Optional.DriverUpdatePlus HKLM\Software\Wow6432Node\BSD
PUP.Optional.Legacy HKCU\Software\Video Player

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#6 Příspěvek od JaRon »

ide o tento adresar C:\Users\Vlas\Desktop
moze byt 149MB, nie 149GB - to MUSI robit problemy :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

vlastak23
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 07 úno 2016 10:18

Re: Preventivní kontrola logu

#7 Příspěvek od vlastak23 »

Ma to tech 149 GB,,mam tedy presunout slozky a soubory asi jinam z Plochy,ze?

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#8 Příspěvek od JaRon »

ano, postacia tie velke - niekde na c: a odtial si das na plochu link
vysledok nech je do 1GB - restart PC a zreferuj stav
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

vlastak23
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 07 úno 2016 10:18

Re: Preventivní kontrola logu

#9 Příspěvek od vlastak23 »

Plocha ma velikost 125MB a zlepsilo se vse.Dekuji moc za radu.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#10 Příspěvek od JaRon »

:) rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno