Dobrý den,
systém již něco pamatuje, ale donedávna slušně fungoval i s Win7. V poslední době trvá velmi dlouho první načtení a při běžné práci s emailem se občas objeví upozornění, že "Vaše připojení není soukromé" a nechce mě to pustit dál. Bojím se, že jsem chytil nějakou havěť. Děkuji za kontrolu logu níže.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenek at 2024-06-09 17:28:55
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 58 GB (13%) free of 431 GB
Total RAM: 2009 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:29:29, on 9.6.2024
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19400)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Zdenek.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Služba Avast Browser Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Gen Digital Inc. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - Gen Digital Inc. - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: Služba Avast Browser Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\elevation_service.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\109.0.5414.120\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Unknown owner - C:\windows\system32\SAsrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9660 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 2856208
\??\C:\windows\system32\conhost.exe "1224101208442761884443600400247730779-1250038512-18151927052367463052058237353
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe" /runassvc
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\windows\System32\spoolsv.exe
"taskhost.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\windows\system32\Dwm.exe"
WLIDSvcM.exe 2068
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="6A5E43A7-592B-45E3-3CDE-5C1CBAB4BD2E" /binpath="C:\Program Files\AVAST Software\Avast" /logpath="C:\ProgramData\AVAST Software\Avast\log"
"C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
AvastUI.exe /nogui
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=Avast --annotation=ver=109.0.24252.120 --initial-client-data=0xc4,0xc8,0xcc,0x98,0xd0,0x7feea926b78,0x7feea926b88,0x7feea926b98
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=gpu-process --start-stack-profiler --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1200 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:2
"C:\Program Files\AVAST Software\Avast\aswidsagent.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --first-renderer-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=9 --mojo-platform-channel-handle=2212 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=8 --mojo-platform-channel-handle=2248 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --mojo-platform-channel-handle=2636 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --start-stack-profiler --mojo-platform-channel-handle=3260 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:8
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=3276 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:8
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --mojo-platform-channel-handle=2604 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=7 --mojo-platform-channel-handle=3104 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\system32\cmd.exe /d /c "C:\Program Files\AVAST Software\Avast\AvastNM.exe" chrome-extension://lhnnoklckomcfdlknmjaenoodlpfdclc/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.1e7f991f33eb1518 > \\.\pipe\chrome.nativeMessaging.out.1e7f991f33eb1518
\??\C:\windows\system32\conhost.exe "-363233624-709315021-276259040686121741-9920365141488573593-11668700082089926329
"C:\Program Files\AVAST Software\Avast\AvastNM.exe" chrome-extension://lhnnoklckomcfdlknmjaenoodlpfdclc/ --parent-window=0
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8208 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8492 /prefetch:8
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8456 /prefetch:8
"taskhost.exe"
C:\windows\system32\svchost.exe -k SDRSVC
Explorer.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.0.1370986212\1144049900" -parentBuildID 20230522134052 -prefsHandle 1164 -prefMapHandle 1156 -prefsLen 37359 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {8476f2bc-328f-4605-ba47-af4e9f39e9af} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1264 4bd0e58 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.1.2031958405\1002409439" -parentBuildID 20230522134052 -prefsHandle 1472 -prefMapHandle 1468 -prefsLen 37404 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {3b1bf146-8e1d-49f4-bac0-41a730c42f7a} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1484 4bcf958 socket
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.2.1490208242\1424795691" -childID 1 -isForBrowser -prefsHandle 2040 -prefMapHandle 2072 -prefsLen 38639 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {89b28aa2-9b24-4a0f-8b56-d2d18427a3d6} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2464 1ab0a158 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.3.1385731762\205227522" -childID 2 -isForBrowser -prefsHandle 3396 -prefMapHandle 3392 -prefsLen 44084 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {5cbce883-3b84-49ed-8a63-9dab1311b2f9} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 3408 1f9ec858 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.8.1896042790\651714574" -childID 7 -isForBrowser -prefsHandle 8572 -prefMapHandle 8476 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {1d5511cb-7001-4d9c-b898-dff47e523d5d} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1712 1fca7e58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.9.621044328\1990020320" -childID 8 -isForBrowser -prefsHandle 3156 -prefMapHandle 1948 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {7710ac45-421f-4e4b-84a3-a4d8f3189820} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2208 1fcb2d58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.10.2092199900\1086134589" -childID 9 -isForBrowser -prefsHandle 240 -prefMapHandle 4324 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {10f38297-1c19-409c-bd77-a2a92279bf5e} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 4128 2311ab58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.11.1339725862\2105362703" -parentBuildID 20230522134052 -prefsHandle 3392 -prefMapHandle 8080 -prefsLen 44121 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {30cb31c8-6bf8-4b94-8200-e0698a867b78} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2184 2076b758 rdd
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.12.213810479\780728235" -parentBuildID 20230522134052 -sandboxingKind 1 -prefsHandle 7760 -prefMapHandle 8304 -prefsLen 44121 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {f1c87bfe-f46b-40de-8002-e2355243c99c} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 3600 2076ba58 utility
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.13.1421183012\724564375" -childID 10 -isForBrowser -prefsHandle 8004 -prefMapHandle 7632 -prefsLen 34870 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {fc7a35a2-3e84-4fdf-931c-02f220b10ac7} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 7588 2164ee58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.14.1031404963\411620584" -childID 11 -isForBrowser -prefsHandle 7604 -prefMapHandle 7592 -prefsLen 34870 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {a9f9a4ad-c8b2-4d11-80db-480bbe97709d} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 7892 2164f158 tab
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --disable-gpu-compositing --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=192 --mojo-platform-channel-handle=6996 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Users\Zdenek\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.startup.homepage" - "https://user.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2009-09-18 387608]
"Persistence"=C:\windows\system32\igfxpers.exe [2009-09-18 365592]
"AvastUI.exe"=C:\Program Fi [2014-10-01 6703656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F"=C:\Program Fi [2014-10-01 6703656]
"com.squirrel.Teams.Teams"=C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe [2023-11-10 2589872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Fi [2014-10-01 6703656]
"IAStorIcon"=C:\Program Fi [2014-10-01 6703656]
"IJNetworkScannerSelectorEX"=C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2009-07-03 258048]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Fi [2014-10-01 6703656]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"VIDC.FPS1"=frapsv64.dll
"vidc.ffds"=ff_vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2024-06-04 08:24:07 ----A---- C:\windows\system32\aswBoot.exe
2024-06-04 08:23:51 ----A---- C:\windows\system32\drivers\aswStm.sys
======List of files/folders modified in the last 1 month======
2024-06-09 17:29:21 ----D---- C:\windows\system32\drivers\etc
2024-06-09 17:29:20 ----D---- C:\Program Files\trend micro
2024-06-09 17:24:24 ----D---- C:\windows\temp
2024-06-09 17:07:19 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-09 16:41:30 ----D---- C:\windows\System32
2024-06-09 16:41:29 ----D---- C:\windows\inf
2024-06-09 16:41:29 ----A---- C:\windows\system32\PerfStringBackup.INI
2024-06-09 16:40:05 ----D---- C:\Program Files (x86)\Google
2024-06-09 09:18:20 ----D---- C:\windows\system32\config
2024-06-09 08:43:50 ----D---- C:\ProgramData\AVAST Software
2024-06-04 18:08:20 ----D---- C:\windows\system32\drivers
2024-06-03 07:15:58 ----D---- C:\windows\Prefetch
2024-06-01 12:26:11 ----SHD---- C:\System Volume Information
2024-05-16 22:59:06 ----SHD---- C:\windows\Installer
2024-05-16 08:12:24 ----D---- C:\windows\SysWOW64
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\windows\system32\drivers\aswArDisk.sys [2024-06-04 20424]
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsh.sys [2024-06-04 292808]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniv.sys [2024-06-04 84536]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2024-06-04 69168]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2024-06-04 306744]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 iaStorA;iaStorA; C:\windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2024-06-04 229832]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdriver.sys [2024-06-04 380360]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2024-06-04 28728]
R1 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2024-06-04 269768]
R1 aswNetHub;aswNetHub; C:\windows\system32\drivers\aswNetHub.sys [2024-06-04 548808]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2024-06-04 97848]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2024-06-04 939976]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2024-06-04 698424]
R1 funfrm;funfrm; C:\windows\system32\drivers\funfrm.sys [2010-11-27 58896]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2024-06-04 203832]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-05-19 26128]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2010-04-22 260216]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\windows\system32\DRIVERS\aswNetNd6.sys [2023-04-11 23472]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\windows\system32\DRIVERS\bcmwl664.sys [2010-10-28 4716608]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2010-01-18 717368]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-07-03 7342432]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 vm332avs;Lenovo Camera2; C:\windows\System32\Drivers\vm332avs.sys [2010-04-20 229488]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2019-02-07 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-10 270848]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 Ser2pl;Prolific Serial port driver; C:\windows\system32\DRIVERS\ser2pl64.sys [2010-03-12 97280]
S3 trufos;trufos; C:\windows\system32\drivers\trufos.sys [2017-02-17 350160]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Fi [2014-10-01 6703656]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Fi [2014-10-01 6703656]
R2 avast! Antivirus;Avast Antivirus; C:\Program Fi [2014-10-01 6703656]
R2 avast! Tools;Avast Tools; C:\Program Fi [2014-10-01 6703656]
R2 AvastWscReporter;AvastWscReporter; C:\Program Fi [2014-10-01 6703656]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Fi [2014-10-01 6703656]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Fi [2014-10-01 6703656]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Fi [2014-10-01 6703656]
S2 avast;Služba Avast Browser Update (avast); C:\Program Fi [2014-10-01 6703656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Fi [2014-10-01 6703656]
S2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe [2010-03-25 445496]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Fi [2014-10-01 6703656]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Fi [2014-10-01 6703656]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Fi [2014-10-01 6703656]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Fi [2014-10-01 6703656]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2019-06-18 116224]
S3 IGRS;IGRS; C:\Program Fi [2014-10-01 6703656]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Fi [2014-10-01 6703656]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Fi [2014-10-01 6703656]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Fi [2014-10-01 6703656]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Fi [2014-10-01 6703656]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Fi [2014-10-01 6703656]
S3 ose;Office Source Engine; C:\Program Fi [2014-10-01 6703656]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-06-02 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Fi [2014-10-01 6703656]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu logu, velmi pomalé první načítání
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118554
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu logu, velmi pomalé první načítání
Zdravím!
Poprosím o log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . Tento soft má již své nejlepší časy za sebou. FRST je přesnější. Děkuji.
Poprosím o log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . Tento soft má již své nejlepší časy za sebou. FRST je přesnější. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu logu, velmi pomalé první načítání
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.06.2024
Ran by Zdenek (administrator) on ZDENEK-PC (LENOVO 20023) (09-06-2024 23:31:08)
Running from C:\Users\Zdenek\Desktop\FRST64.exe
Loaded Profiles: Zdenek
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <11>
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastNM.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <12>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [423832 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-11-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP230 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB5.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series: C:\windows\system32\CNMLMB5.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\Installer\chrmstp.exe [2024-03-08] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {9A45BB32-B1B0-4EFE-A6D3-B6F6116E27F0} - System32\Tasks\{19F21764-B6E2-4B4E-8E95-3CAC3B784A73} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\gpam-3-0-0-2.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C105C2C7-5F66-4B67-9398-3619D15FEA68} - System32\Tasks\{33A5DEF2-E611-48BB-8968-6867145B2073} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {7208966C-A740-42FC-890F-01BA8DE7AF6B} - System32\Tasks\{AE63F4C6-4E27-4519-BD47-445AEA29F6CC} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2\CamStudioSetup_v2.7.2.exe -d C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {4F41EE8F-17DA-4B1D-B28E-44BC42DE962B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {76A59843-8C25-4C3A-9B9E-0C952D05322A} - System32\Tasks\Adobe online aktualizační program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {9304C00C-1BDC-42A9-9CC1-658017417A36} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE27EC4-CDC9-42DF-A213-BD2394B786B3} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {F7DD996B-FDD2-431D-84E4-5732B972DCC8} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5079448 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {8A54CF58-383D-47D2-8397-59F3A757BDC4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup
Task: {C4E122C0-C727-4AF6-9C0D-6B516E934138} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {99A8FAB8-55AD-4F23-8BB9-F7BDFF3A4F1B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {3915A981-010A-441A-8760-C742FB2FA5C0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AB35F7D7-0447-4FC2-932D-CF23847027FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-08] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1F18F7D3-9B5F-4C7E-867A-2C090929D7BF}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\13233343: [DhcpNameServer] 84.16.104.129 84.16.96.2
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\35F435C41402D20267F6C6E616: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpDomain] Belkin
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\A54554D2451443733355: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\B6566796E6F577: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\D41627479602960586F6E656: [DhcpNameServer] 172.20.10.1
FireFox:
========
FF DefaultProfile: fvt2dzgi.default
FF ProfilePath: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default [2024-06-09]
FF Homepage: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://user.centrum.cz/
FF Notifications: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://www.lynxbroker.cz
FF Extension: (No Name) - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-06-01]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2010-11-24] (Google) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-14] (VideoLAN) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-05-12] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-535601518-2141012399-1713020722-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Zdenek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default [2024-06-09]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://email.seznam.cz/"
CHR Extension: (Dokumenty Google offline) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9026968 2024-06-04] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [761752 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1198488 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\elevation_service.exe [1802824 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [20424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [229832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [380360 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [292808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [84536 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [28728 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [269768 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [548808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [97848 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [69168 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [939976 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [698424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [203832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [306744 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [79376 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
R1 funfrm; C:\Windows\System32\Drivers\funfrm.sys [58896 2010-11-27] (Lenovo (Beijing) Limited -> )
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2pl; C:\windows\System32\DRIVERS\ser2pl64.sys [97280 2010-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 trufos; C:\windows\System32\drivers\trufos.sys [350160 2017-02-17] (Bitdefender SRL -> BitDefender S.R.L.)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 vm332avs; C:\windows\System32\Drivers\vm332avs.sys [229488 2010-04-20] (Bison Electronics Inc. -> Vimicro Corporation)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11280 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-06-09 23:31 - 2024-06-09 23:42 - 000024164 _____ C:\Users\Zdenek\Desktop\FRST.txt
2024-06-09 23:28 - 2024-06-09 23:37 - 000000000 ____D C:\FRST
2024-06-09 23:23 - 2024-06-09 23:23 - 002395136 _____ (Farbar) C:\Users\Zdenek\Desktop\FRST64.exe
2024-06-09 16:42 - 2024-06-09 16:42 - 000040052 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9718279066.pdf
2024-06-09 16:38 - 2024-06-09 16:39 - 000325933 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9703852673.pdf
2024-06-09 09:15 - 2021-06-08 00:46 - 001572556 _____ C:\Users\Zdenek\Desktop\Datart_Lanskroun_Dvorakova_09062024_audio.WMA
2024-06-09 09:15 - 2021-06-06 16:56 - 001923044 _____ C:\Users\Zdenek\Desktop\Sefir_Usti nad Orlici_240607_audio.WMA
2024-06-08 23:29 - 2024-06-08 23:29 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ (1).pdf
2024-06-08 17:22 - 2024-06-09 18:35 - 000000000 ____D C:\Users\Zdenek\Desktop\AN Inzerce
2024-06-07 23:12 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Desktop\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:11 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Downloads\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:09 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Desktop\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:08 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Downloads\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:06 - 2024-06-07 23:06 - 000056292 _____ C:\Users\Zdenek\Downloads\faktura_17177942432640_1.pdf
2024-06-07 21:45 - 2024-06-07 21:45 - 002726740 _____ C:\Users\Zdenek\Downloads\CD_Eurobond_2022_Prospectus.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000325862 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9697290934.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000040008 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9694879179.pdf
2024-06-06 15:14 - 2024-06-06 15:14 - 000386956 _____ C:\Users\Zdenek\Desktop\VARIANTA PLÁNU KOUPELNY 2.pdf
2024-06-06 14:59 - 2024-06-06 14:59 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ.pdf
2024-06-06 11:14 - 2024-06-06 11:14 - 000040034 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9689439792.pdf
2024-06-06 07:57 - 2024-06-06 07:58 - 000039992 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9686308142.pdf
2024-06-04 08:24 - 2024-06-04 08:14 - 000315288 _____ (Gen Digital Inc.) C:\windows\system32\aswBoot.exe
2024-06-04 08:19 - 2024-06-04 08:19 - 000039995 _____ C:\Users\Zdenek\Downloads\Vinted-S1322698025.pdf
2024-06-02 21:45 - 2024-06-02 21:45 - 000326070 _____ C:\Users\Zdenek\Downloads\Vinted-S1320462049.pdf
2024-05-31 17:19 - 2024-06-06 15:48 - 000000000 ____D C:\Users\Zdenek\Desktop\AM Inzerce
2024-05-25 09:57 - 2024-05-25 09:58 - 000049450 _____ C:\Users\Zdenek\Downloads\947053840697_1_1152_20240226.pdf
2024-05-25 08:58 - 2024-05-25 08:58 - 000074343 _____ C:\Users\Zdenek\Downloads\priloha_1351768661_0_00712303_dne_0582_2402188853_qr.pdf
2024-05-22 14:32 - 2024-05-22 14:32 - 000315679 _____ C:\Users\Zdenek\Downloads\E.ON_Retence a zálohy_052024_SCÉNÁŘ_MS.pdf
2024-05-18 20:29 - 2024-05-18 20:29 - 000039399 _____ C:\Users\Zdenek\Desktop\U7359131_20230905_20240517.pdf
2024-05-18 20:28 - 2024-05-18 20:28 - 000031950 _____ C:\Users\Zdenek\Desktop\U7359131_20220907_20230907.pdf
2024-05-18 20:27 - 2024-05-18 20:27 - 000016991 _____ C:\Users\Zdenek\Desktop\U7359131_20210908_20220908.pdf
2024-05-10 20:31 - 2024-05-10 20:31 - 000056253 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_4.pdf
2024-05-10 20:28 - 2024-05-10 20:28 - 000056413 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_3.pdf
2024-05-10 20:26 - 2024-05-10 20:26 - 000056265 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_2.pdf
2024-05-10 20:19 - 2024-05-10 20:19 - 000055393 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_1.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-06-09 23:16 - 2023-01-20 09:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-09 22:41 - 2011-06-23 14:06 - 000000000 ____D C:\Program Files (x86)\Google
2024-06-09 18:34 - 2010-10-24 23:32 - 000678066 _____ C:\windows\system32\perfh005.dat
2024-06-09 18:34 - 2010-10-24 23:32 - 000146432 _____ C:\windows\system32\perfc005.dat
2024-06-09 18:34 - 2009-07-14 07:13 - 001612724 _____ C:\windows\system32\PerfStringBackup.INI
2024-06-09 18:34 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2024-06-09 17:29 - 2015-10-12 19:50 - 000000000 ____D C:\Program Files\trend micro
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:17 - 2021-04-03 10:45 - 000003682 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-06-09 10:17 - 2021-04-03 10:45 - 000003554 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-06-09 10:17 - 2015-08-01 05:36 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2024-06-09 10:17 - 2014-12-23 20:39 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2024-06-09 09:59 - 2023-09-14 07:57 - 000000000 ____D C:\Users\Zdenek\Desktop\MS2023
2024-06-09 09:38 - 2018-07-17 14:53 - 000000000 ____D C:\Users\Zdenek\AppData\Local\AVAST Software
2024-06-09 08:43 - 2013-05-30 23:16 - 000000000 ____D C:\ProgramData\AVAST Software
2024-06-09 08:43 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2024-06-08 17:24 - 2021-09-27 10:39 - 000000000 ____D C:\Users\Zdenek\Desktop\inzerce
2024-06-04 18:08 - 2013-05-30 23:18 - 000939976 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSnx.sys
2024-06-04 08:18 - 2013-05-30 23:18 - 000306744 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswVmm.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000292808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsh.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000084536 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbuniv.sys
2024-06-04 08:16 - 2020-10-23 19:19 - 000269768 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswMonFlt.sys
2024-06-04 08:16 - 2020-04-20 16:58 - 000548808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswNetHub.sys
2024-06-04 08:16 - 2018-10-22 12:58 - 000028728 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswKbd.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000698424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSP.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000097848 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRdr2.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000069168 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRvrt.sys
2024-06-04 08:06 - 2019-01-16 16:35 - 000020424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArDisk.sys
2024-06-04 08:06 - 2018-01-09 22:41 - 000229832 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArPot.sys
2024-06-04 08:05 - 2019-01-16 21:35 - 000380360 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsdriver.sys
2024-06-01 13:44 - 2011-05-31 18:47 - 000000000 ____D C:\Users\Zdenek
2024-05-18 19:11 - 2023-07-16 20:49 - 000010111 _____ C:\Users\Zdenek\Desktop\ZIMNÍ VINTED.txt
2024-05-17 17:26 - 2023-03-15 21:42 - 000001033 _____ C:\Users\Zdenek\Desktop\dual.txt
2024-05-17 16:53 - 2020-02-16 21:16 - 000000000 ____D C:\Users\Zdenek\Desktop\Hudba 2022
2024-05-16 08:18 - 2022-10-13 21:56 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
==================== Files in the root of some directories ========
2015-12-14 16:46 - 2021-08-31 16:02 - 000017920 _____ () C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-29 12:02 - 2014-11-29 12:02 - 000000000 ___SH () C:\Users\Zdenek\AppData\Local\LumaEmu
2024-05-07 07:49 - 2024-05-07 07:49 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.06.2024
Ran by Zdenek (09-06-2024 23:53:14)
Running from C:\Users\Zdenek\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2011-05-31 16:47:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-535601518-2141012399-1713020722-500 - Administrator - Disabled)
Guest (S-1-5-21-535601518-2141012399-1713020722-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-535601518-2141012399-1713020722-1002 - Limited - Enabled)
Zdenek (S-1-5-21-535601518-2141012399-1713020722-1000 - Administrator - Enabled) => C:\Users\Zdenek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 24.002.20759 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
ArcSoft MediaImpression 2 (HKLM-x32\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.5.6116 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 109.0.24252.120 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (05/19/2009 4.4.0.1) (HKLM\...\92F4CDC794E6E4E29DC063D292D1C94F6FA1EA1E) (Version: 05/19/2009 4.4.0.1 - Lenovo)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.3.2.1195 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Broadcom 802.11 Wireless Driver (HKLM-x32\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon MP230 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP230_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.119.0.60 - Conexant)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
EasyCapture (HKLM-x32\...\EasyCapture4.0) (Version: V4.0.09.1015 - Lenovo)
Energy Management (HKLM-x32\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 4.4.1.3 - Lenovo)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Earth (HKLM-x32\...\{6DB7AD00-F781-11DF-9EEF-001279CD8240}) (Version: 6.0.0.1735 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
GPS Information (HKLM-x32\...\{219BB7DF-83BA-44C6-A362-D17981FBD285}) (Version: - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.41 - Irfan Skiljan)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ladicka (HKLM-x32\...\Ladicka) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.2018.19 - Lenovo EasyCamera)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.)
Lenovo ReadyComm 5 (HKLM-x32\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.20 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM-x32\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lenovo_Wireless_Driver (HKLM-x32\...\{28ABE740-47F3-441B-9437-852F6A64EFF8}) (Version: 1.02.01 - Lenovo)
Map Explorer 9 9.0.39-1 (HKLM-x32\...\MapExplorer9_is1) (Version: 9.0.39-1 - MapFactor)
Media Player Codec Pack 4.3.9 (HKLM-x32\...\Media Player - Codec Pack) (Version: 4.3.9 - Media Player Codec Pack)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (CSY) (HKLM\...\{3C38CA01-7933-31E7-A1F6-EAA1DF9BEDF3}) (Version: 4.6.01055 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{09CCBE8E-B964-30EF-AE84-6537AB4197F9}) (Version: 4.7.03062 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Antimalware Service CS-CZ Language Pack (HKLM\...\{17CA32D1-73BD-4990-B8F6-369D8D34B05D}) (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (HKLM\...\{DC911ADF-7B60-40F2-A112-FB1EB6402D07}) (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 113.0.2 (x64 cs)) (Version: 113.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 113.0.2.8542 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Navigator 9 9.0.39-1 (HKLM-x32\...\PCNavigator9_is1) (Version: 9.0.39-1 - MapFactor)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC)
Plague Inc Evolved (HKLM-x32\...\Plague Inc Evolved_is1) (Version: 0.7.5.1 - Decepticon)
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d4 - CyberLink Corp.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3600 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3600 series) (Version: - Canon Inc.)
Registrace uživatele zařízení Canon MP230 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP230 series) (Version: - Canon Inc.)
Setup Utility 9 (HKLM-x32\...\MAPFACTOR_SETUP_UTILITY_9_is1) (Version: 1.0 - MapFactor)
Unity Web Player (HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
Windows Live Communications Platform (HKLM-x32\...\{D45240D3-B6B3-4FF9-B243-54ECE3E10066}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Fotogalerie (HKLM-x32\...\{FB79FDB7-4DE1-453D-99FE-9A880F57380E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{1B8ABA62-74F0-47ED-B18C-A43128E591B8}) (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{0B0F231F-CE6A-483D-AA23-77B364F75917}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (HKLM\...\{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{9D56775A-93F3-44A3-8092-840E3826DE30}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C454280F-3C3E-4929-B60E-9E6CED5717E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C66824E4-CBB3-4851-BB3F-E8CFD6350923}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{80E8C65A-8F70-4585-88A2-ABC54BABD576}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{A0C91188-C88F-4E86-93E6-CD7C9A266649}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{DECDCB7C-58CC-4865-91AF-627F9798FE48}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (HKLM-x32\...\{50300123-F8FC-4B50-B449-E847D04F1BA2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{80956555-A512-4190-9CAD-B000C36D6B6B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{DA54F80E-261C-41A2-A855-549A144F2F59}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{19BA08F7-C728-469C-8A35-BFBD3633BE08}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{92EA4134-10D1-418A-91E1-5A0453131A38}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{78906B56-0E81-42A7-AC25-F54C946E1538}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{D436F577-1695-4D2F-8B44-AC76C99E0002}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{3336F667-9049-4D46-98B6-4C743EEBC5B1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{34F4D9A4-42C2-4348-BEF4-E553C84549E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (HKLM\...\{DF6D988A-EEA0-4277-AAB8-158E086E439B}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{3921492E-82D2-4180-8124-E347AD2F2DB4}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (HKLM\...\{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{682B3E4F-696A-42DE-A41C-4C07EA1678B4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{200FEC62-3C34-4D60-9CE8-EC372E01C08F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{4264C020-850B-4F08-ACBE-98205D9C336C}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A726AE06-AAA3-43D1-87E3-70F510314F04}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAF454FC-82CA-4F29-AB31-6A109485E76E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{AB78C965-5C67-409B-8433-D7B5BDB12073}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2009-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\windows\system32\ff_vfw.dll [127488 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2014-04-08] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3525120 2014-11-16] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [216064 2013-12-17] () [File not signed]
HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-17] (Packed With Joy !) [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-07-12 14:22 - 2019-07-12 14:22 - 000016384 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\57404270395de352ac6a365c479a4305\PSIClient.ni.dll
2023-06-29 22:09 - 2015-01-09 08:45 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_CSY.DLL
2023-06-29 22:09 - 2015-01-09 08:44 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2020-05-08 15:17 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\windows\System32\CNMN6PPM.DLL
2019-07-12 14:22 - 2019-07-12 14:22 - 000020992 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\1e1b33afacd8df7000356690de260f82\IAStorCommon.ni.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000467456 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000269824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000073216 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMgr\23e6d4139f7873755107e0eb9dd109b7\IAStorDataMgr.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000363520 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\8fc4aed41432ad73a703ce226b5f065a\IAStorUtil.ni.dll
2019-07-12 14:23 - 2019-07-12 14:23 - 001076224 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorViewModel\ccd9ade906d5a97d42fa9b4a87403833\IAStorViewModel.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 003713536 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSI\9fb44e7de27d31898ca10bc69922a31b\PSI.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000625152 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PsiData\e04aaa9f4b7ab0f6bc5f0ea72ed34b5d\PsiData.ni.dll
2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2013-05-30 23:18 - 2013-05-30 23:18 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\MSVCP140.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\ucrtbase.DLL
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000027136 _____ (Microsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\bab48af25f89a402870b763385ac1697\IAStorDataMgrSvcInterfaces.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2024-06-09 17:29 - 000000828 _____ C:\windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CFA8CC00-5D2D-47B2-81E6-EFDD256381B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DD4656B-E8A5-4C75-A674-DD7752873748}] => (Allow) LPort=2869
FirewallRules: [{1C8F54E1-C1A9-4FC6-B044-F9B12F4EAA1C}] => (Allow) LPort=1900
FirewallRules: [{B41F6CBE-D9C6-496A-94E4-0948723AE97C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{45B061D7-3671-40F0-94D4-922190591A11}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{596B635D-00D4-40B7-A472-4A1234235631}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7230BDC5-9F57-4FDD-B2D8-EF8D7E379D8D}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{F11F979F-CD2B-42BA-A16D-B21CC7DA1CB2}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{893C7404-EA53-4836-B6A8-7E538753DCBF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{D93458A2-EB2C-43EB-A769-9433154AE3CB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{0FB0DC5C-7A67-4DBA-B791-E76B25588CAB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{FD91D051-8AA9-4A39-951C-CFD2125817EF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{200D6F7C-722C-4B33-91C2-F48C1C7D33DC}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7D3CFB67-F0D8-46F4-9296-557ECBB4F1C5}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{B47B4572-693A-4B0D-8691-81D076134CC4}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [TCP Query User{F7719C56-0E6A-4E15-ADFD-1D9099080F95}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [UDP Query User{AD775C85-6CE9-442F-BC0C-F7B9ED859EF1}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [{7B238D2B-FBBB-4D8A-810B-22D78D7C96BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{985A1AB7-8868-428A-81AC-A1E3F2F6A7FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A7C33224-C2A8-4D7F-8DD9-71EF8C4CEFFF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B8B843CA-B764-4A93-BE7C-2419C24A9BD4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3A6C22CE-831C-4CAD-97AB-76944A370BBE}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{868A2FD5-10C8-44ED-B033-E1F11A1BEE6A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{17CB8387-CE93-4E90-9168-FCBED0B734F8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{7E5706A1-9FF9-4EBA-BDD8-000F555326EB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{68DCDDE6-6E53-430C-BF6D-7742A54917FD}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
19-05-2024 12:29:16 Naplánovaný kontrolní bod
01-06-2024 12:24:39 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x3dc
Čas spuštění chybující aplikace: 0x01dab5739e9566b4
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa95e345-2172-11ef-9ccc-0008742d9318
Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x7b8
Čas spuštění chybující aplikace: 0x01dab5739bc68721
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa912085-2172-11ef-9ccc-0008742d9318
Error: (06/01/2024 11:06:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0x15d8
Čas spuštění chybující aplikace: 0x01dab467583a68f0
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ddc2e1f8-205a-11ef-9617-0008742d9318
Error: (05/31/2024 05:37:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0xdcc
Čas spuštění chybující aplikace: 0x01dab36ffee9b3db
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ae3215b3-1f63-11ef-a1b4-0008742d9318
Error: (05/29/2024 06:41:56 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy D:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (05/24/2024 10:29:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x6f8
Čas spuštění chybující aplikace: 0x01daadf7b8c211ff
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40cbbad9-1a0c-11ef-9c1e-0008742d9318
Error: (05/24/2024 10:28:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x7e8
Čas spuštění chybující aplikace: 0x01daadf7b5ff194e
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3fd68d1c-1a0c-11ef-9c1e-0008742d9318
Error: (05/22/2024 02:46:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroRd32.exe, verze: 24.2.20759.0, časové razítko: 0x663fccd4
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24499, časové razítko: 0x5d011861
Kód výjimky: 0xc000000d
Posun chyby: 0x00094d4a
ID chybujícího procesu: 0x1148
Čas spuštění chybující aplikace: 0x01daac4435d61c38
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Cesta k chybujícímu modulu: C:\windows\SysWOW64\ntdll.dll
ID zprávy: 478bbf69-1839-11ef-9783-0008742d9318
System errors:
=============
Error: (06/10/2024 12:10:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/09/2024 04:34:17 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NlaSvc bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 02:09:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby SysMain bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 09:14:05 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/09/2024 09:00:33 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 08:50:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 08:50:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.
Error: (06/09/2024 08:49:56 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================Event[0]:
Date: 2015-10-15 19:41:25.202
Description:
Funkce Ochrana v reálném čase u prohledávání Windows Defender zjistila chybu a selhala.
Funkce:Při přístupu
Kód chyb:0x80070013
Popis chyby:Médium je chráněno proti zápisu.
Důvod:Sledování v reálném čase přestalo fungovat z neznámého důvodu. Proveďte obnovení restartováním služby.
==================== Memory info ===========================
BIOS: LENOVO 18CN46WW(V2.55) 05/21/2010
Motherboard: LENOVO NITU1
Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 91%
Total physical RAM: 2008.6 MB
Available physical RAM: 166.08 MB
Total Virtual: 5767.76 MB
Available Virtual: 456.62 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:421.37 GB) (Free:52.33 GB) (Model: ATA WDC WD5000BEVT-2 SCSI Disk Device) NTFS
\\?\Volume{27adc0ef-f9ba-11df-81cd-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B40280FB)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=428 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.7 GB) - (Type=12)
==================== End of Addition.txt =======================
Ran by Zdenek (administrator) on ZDENEK-PC (LENOVO 20023) (09-06-2024 23:31:08)
Running from C:\Users\Zdenek\Desktop\FRST64.exe
Loaded Profiles: Zdenek
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <11>
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastNM.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <12>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [423832 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-11-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP230 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB5.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series: C:\windows\system32\CNMLMB5.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\Installer\chrmstp.exe [2024-03-08] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {9A45BB32-B1B0-4EFE-A6D3-B6F6116E27F0} - System32\Tasks\{19F21764-B6E2-4B4E-8E95-3CAC3B784A73} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\gpam-3-0-0-2.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C105C2C7-5F66-4B67-9398-3619D15FEA68} - System32\Tasks\{33A5DEF2-E611-48BB-8968-6867145B2073} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {7208966C-A740-42FC-890F-01BA8DE7AF6B} - System32\Tasks\{AE63F4C6-4E27-4519-BD47-445AEA29F6CC} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2\CamStudioSetup_v2.7.2.exe -d C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {4F41EE8F-17DA-4B1D-B28E-44BC42DE962B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {76A59843-8C25-4C3A-9B9E-0C952D05322A} - System32\Tasks\Adobe online aktualizační program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {9304C00C-1BDC-42A9-9CC1-658017417A36} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE27EC4-CDC9-42DF-A213-BD2394B786B3} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {F7DD996B-FDD2-431D-84E4-5732B972DCC8} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5079448 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {8A54CF58-383D-47D2-8397-59F3A757BDC4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup
Task: {C4E122C0-C727-4AF6-9C0D-6B516E934138} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {99A8FAB8-55AD-4F23-8BB9-F7BDFF3A4F1B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {3915A981-010A-441A-8760-C742FB2FA5C0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AB35F7D7-0447-4FC2-932D-CF23847027FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-08] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1F18F7D3-9B5F-4C7E-867A-2C090929D7BF}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\13233343: [DhcpNameServer] 84.16.104.129 84.16.96.2
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\35F435C41402D20267F6C6E616: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpDomain] Belkin
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\A54554D2451443733355: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\B6566796E6F577: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\D41627479602960586F6E656: [DhcpNameServer] 172.20.10.1
FireFox:
========
FF DefaultProfile: fvt2dzgi.default
FF ProfilePath: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default [2024-06-09]
FF Homepage: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://user.centrum.cz/
FF Notifications: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://www.lynxbroker.cz
FF Extension: (No Name) - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-06-01]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2010-11-24] (Google) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-14] (VideoLAN) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-05-12] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-535601518-2141012399-1713020722-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Zdenek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default [2024-06-09]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://email.seznam.cz/"
CHR Extension: (Dokumenty Google offline) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9026968 2024-06-04] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [761752 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1198488 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\elevation_service.exe [1802824 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [20424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [229832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [380360 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [292808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [84536 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [28728 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [269768 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [548808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [97848 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [69168 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [939976 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [698424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [203832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [306744 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [79376 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
R1 funfrm; C:\Windows\System32\Drivers\funfrm.sys [58896 2010-11-27] (Lenovo (Beijing) Limited -> )
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2pl; C:\windows\System32\DRIVERS\ser2pl64.sys [97280 2010-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 trufos; C:\windows\System32\drivers\trufos.sys [350160 2017-02-17] (Bitdefender SRL -> BitDefender S.R.L.)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 vm332avs; C:\windows\System32\Drivers\vm332avs.sys [229488 2010-04-20] (Bison Electronics Inc. -> Vimicro Corporation)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11280 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-06-09 23:31 - 2024-06-09 23:42 - 000024164 _____ C:\Users\Zdenek\Desktop\FRST.txt
2024-06-09 23:28 - 2024-06-09 23:37 - 000000000 ____D C:\FRST
2024-06-09 23:23 - 2024-06-09 23:23 - 002395136 _____ (Farbar) C:\Users\Zdenek\Desktop\FRST64.exe
2024-06-09 16:42 - 2024-06-09 16:42 - 000040052 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9718279066.pdf
2024-06-09 16:38 - 2024-06-09 16:39 - 000325933 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9703852673.pdf
2024-06-09 09:15 - 2021-06-08 00:46 - 001572556 _____ C:\Users\Zdenek\Desktop\Datart_Lanskroun_Dvorakova_09062024_audio.WMA
2024-06-09 09:15 - 2021-06-06 16:56 - 001923044 _____ C:\Users\Zdenek\Desktop\Sefir_Usti nad Orlici_240607_audio.WMA
2024-06-08 23:29 - 2024-06-08 23:29 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ (1).pdf
2024-06-08 17:22 - 2024-06-09 18:35 - 000000000 ____D C:\Users\Zdenek\Desktop\AN Inzerce
2024-06-07 23:12 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Desktop\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:11 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Downloads\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:09 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Desktop\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:08 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Downloads\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:06 - 2024-06-07 23:06 - 000056292 _____ C:\Users\Zdenek\Downloads\faktura_17177942432640_1.pdf
2024-06-07 21:45 - 2024-06-07 21:45 - 002726740 _____ C:\Users\Zdenek\Downloads\CD_Eurobond_2022_Prospectus.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000325862 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9697290934.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000040008 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9694879179.pdf
2024-06-06 15:14 - 2024-06-06 15:14 - 000386956 _____ C:\Users\Zdenek\Desktop\VARIANTA PLÁNU KOUPELNY 2.pdf
2024-06-06 14:59 - 2024-06-06 14:59 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ.pdf
2024-06-06 11:14 - 2024-06-06 11:14 - 000040034 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9689439792.pdf
2024-06-06 07:57 - 2024-06-06 07:58 - 000039992 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9686308142.pdf
2024-06-04 08:24 - 2024-06-04 08:14 - 000315288 _____ (Gen Digital Inc.) C:\windows\system32\aswBoot.exe
2024-06-04 08:19 - 2024-06-04 08:19 - 000039995 _____ C:\Users\Zdenek\Downloads\Vinted-S1322698025.pdf
2024-06-02 21:45 - 2024-06-02 21:45 - 000326070 _____ C:\Users\Zdenek\Downloads\Vinted-S1320462049.pdf
2024-05-31 17:19 - 2024-06-06 15:48 - 000000000 ____D C:\Users\Zdenek\Desktop\AM Inzerce
2024-05-25 09:57 - 2024-05-25 09:58 - 000049450 _____ C:\Users\Zdenek\Downloads\947053840697_1_1152_20240226.pdf
2024-05-25 08:58 - 2024-05-25 08:58 - 000074343 _____ C:\Users\Zdenek\Downloads\priloha_1351768661_0_00712303_dne_0582_2402188853_qr.pdf
2024-05-22 14:32 - 2024-05-22 14:32 - 000315679 _____ C:\Users\Zdenek\Downloads\E.ON_Retence a zálohy_052024_SCÉNÁŘ_MS.pdf
2024-05-18 20:29 - 2024-05-18 20:29 - 000039399 _____ C:\Users\Zdenek\Desktop\U7359131_20230905_20240517.pdf
2024-05-18 20:28 - 2024-05-18 20:28 - 000031950 _____ C:\Users\Zdenek\Desktop\U7359131_20220907_20230907.pdf
2024-05-18 20:27 - 2024-05-18 20:27 - 000016991 _____ C:\Users\Zdenek\Desktop\U7359131_20210908_20220908.pdf
2024-05-10 20:31 - 2024-05-10 20:31 - 000056253 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_4.pdf
2024-05-10 20:28 - 2024-05-10 20:28 - 000056413 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_3.pdf
2024-05-10 20:26 - 2024-05-10 20:26 - 000056265 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_2.pdf
2024-05-10 20:19 - 2024-05-10 20:19 - 000055393 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_1.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-06-09 23:16 - 2023-01-20 09:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-09 22:41 - 2011-06-23 14:06 - 000000000 ____D C:\Program Files (x86)\Google
2024-06-09 18:34 - 2010-10-24 23:32 - 000678066 _____ C:\windows\system32\perfh005.dat
2024-06-09 18:34 - 2010-10-24 23:32 - 000146432 _____ C:\windows\system32\perfc005.dat
2024-06-09 18:34 - 2009-07-14 07:13 - 001612724 _____ C:\windows\system32\PerfStringBackup.INI
2024-06-09 18:34 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2024-06-09 17:29 - 2015-10-12 19:50 - 000000000 ____D C:\Program Files\trend micro
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:17 - 2021-04-03 10:45 - 000003682 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-06-09 10:17 - 2021-04-03 10:45 - 000003554 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-06-09 10:17 - 2015-08-01 05:36 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2024-06-09 10:17 - 2014-12-23 20:39 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2024-06-09 09:59 - 2023-09-14 07:57 - 000000000 ____D C:\Users\Zdenek\Desktop\MS2023
2024-06-09 09:38 - 2018-07-17 14:53 - 000000000 ____D C:\Users\Zdenek\AppData\Local\AVAST Software
2024-06-09 08:43 - 2013-05-30 23:16 - 000000000 ____D C:\ProgramData\AVAST Software
2024-06-09 08:43 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2024-06-08 17:24 - 2021-09-27 10:39 - 000000000 ____D C:\Users\Zdenek\Desktop\inzerce
2024-06-04 18:08 - 2013-05-30 23:18 - 000939976 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSnx.sys
2024-06-04 08:18 - 2013-05-30 23:18 - 000306744 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswVmm.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000292808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsh.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000084536 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbuniv.sys
2024-06-04 08:16 - 2020-10-23 19:19 - 000269768 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswMonFlt.sys
2024-06-04 08:16 - 2020-04-20 16:58 - 000548808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswNetHub.sys
2024-06-04 08:16 - 2018-10-22 12:58 - 000028728 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswKbd.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000698424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSP.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000097848 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRdr2.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000069168 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRvrt.sys
2024-06-04 08:06 - 2019-01-16 16:35 - 000020424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArDisk.sys
2024-06-04 08:06 - 2018-01-09 22:41 - 000229832 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArPot.sys
2024-06-04 08:05 - 2019-01-16 21:35 - 000380360 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsdriver.sys
2024-06-01 13:44 - 2011-05-31 18:47 - 000000000 ____D C:\Users\Zdenek
2024-05-18 19:11 - 2023-07-16 20:49 - 000010111 _____ C:\Users\Zdenek\Desktop\ZIMNÍ VINTED.txt
2024-05-17 17:26 - 2023-03-15 21:42 - 000001033 _____ C:\Users\Zdenek\Desktop\dual.txt
2024-05-17 16:53 - 2020-02-16 21:16 - 000000000 ____D C:\Users\Zdenek\Desktop\Hudba 2022
2024-05-16 08:18 - 2022-10-13 21:56 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
==================== Files in the root of some directories ========
2015-12-14 16:46 - 2021-08-31 16:02 - 000017920 _____ () C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-29 12:02 - 2014-11-29 12:02 - 000000000 ___SH () C:\Users\Zdenek\AppData\Local\LumaEmu
2024-05-07 07:49 - 2024-05-07 07:49 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.06.2024
Ran by Zdenek (09-06-2024 23:53:14)
Running from C:\Users\Zdenek\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2011-05-31 16:47:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-535601518-2141012399-1713020722-500 - Administrator - Disabled)
Guest (S-1-5-21-535601518-2141012399-1713020722-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-535601518-2141012399-1713020722-1002 - Limited - Enabled)
Zdenek (S-1-5-21-535601518-2141012399-1713020722-1000 - Administrator - Enabled) => C:\Users\Zdenek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 24.002.20759 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
ArcSoft MediaImpression 2 (HKLM-x32\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.5.6116 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 109.0.24252.120 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (05/19/2009 4.4.0.1) (HKLM\...\92F4CDC794E6E4E29DC063D292D1C94F6FA1EA1E) (Version: 05/19/2009 4.4.0.1 - Lenovo)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.3.2.1195 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Broadcom 802.11 Wireless Driver (HKLM-x32\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon MP230 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP230_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.119.0.60 - Conexant)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
EasyCapture (HKLM-x32\...\EasyCapture4.0) (Version: V4.0.09.1015 - Lenovo)
Energy Management (HKLM-x32\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 4.4.1.3 - Lenovo)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Earth (HKLM-x32\...\{6DB7AD00-F781-11DF-9EEF-001279CD8240}) (Version: 6.0.0.1735 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
GPS Information (HKLM-x32\...\{219BB7DF-83BA-44C6-A362-D17981FBD285}) (Version: - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.41 - Irfan Skiljan)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ladicka (HKLM-x32\...\Ladicka) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.2018.19 - Lenovo EasyCamera)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.)
Lenovo ReadyComm 5 (HKLM-x32\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.20 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM-x32\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lenovo_Wireless_Driver (HKLM-x32\...\{28ABE740-47F3-441B-9437-852F6A64EFF8}) (Version: 1.02.01 - Lenovo)
Map Explorer 9 9.0.39-1 (HKLM-x32\...\MapExplorer9_is1) (Version: 9.0.39-1 - MapFactor)
Media Player Codec Pack 4.3.9 (HKLM-x32\...\Media Player - Codec Pack) (Version: 4.3.9 - Media Player Codec Pack)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (CSY) (HKLM\...\{3C38CA01-7933-31E7-A1F6-EAA1DF9BEDF3}) (Version: 4.6.01055 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{09CCBE8E-B964-30EF-AE84-6537AB4197F9}) (Version: 4.7.03062 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Antimalware Service CS-CZ Language Pack (HKLM\...\{17CA32D1-73BD-4990-B8F6-369D8D34B05D}) (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (HKLM\...\{DC911ADF-7B60-40F2-A112-FB1EB6402D07}) (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 113.0.2 (x64 cs)) (Version: 113.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 113.0.2.8542 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Navigator 9 9.0.39-1 (HKLM-x32\...\PCNavigator9_is1) (Version: 9.0.39-1 - MapFactor)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC)
Plague Inc Evolved (HKLM-x32\...\Plague Inc Evolved_is1) (Version: 0.7.5.1 - Decepticon)
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d4 - CyberLink Corp.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3600 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3600 series) (Version: - Canon Inc.)
Registrace uživatele zařízení Canon MP230 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP230 series) (Version: - Canon Inc.)
Setup Utility 9 (HKLM-x32\...\MAPFACTOR_SETUP_UTILITY_9_is1) (Version: 1.0 - MapFactor)
Unity Web Player (HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
Windows Live Communications Platform (HKLM-x32\...\{D45240D3-B6B3-4FF9-B243-54ECE3E10066}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Fotogalerie (HKLM-x32\...\{FB79FDB7-4DE1-453D-99FE-9A880F57380E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{1B8ABA62-74F0-47ED-B18C-A43128E591B8}) (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{0B0F231F-CE6A-483D-AA23-77B364F75917}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (HKLM\...\{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{9D56775A-93F3-44A3-8092-840E3826DE30}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C454280F-3C3E-4929-B60E-9E6CED5717E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C66824E4-CBB3-4851-BB3F-E8CFD6350923}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{80E8C65A-8F70-4585-88A2-ABC54BABD576}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{A0C91188-C88F-4E86-93E6-CD7C9A266649}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{DECDCB7C-58CC-4865-91AF-627F9798FE48}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (HKLM-x32\...\{50300123-F8FC-4B50-B449-E847D04F1BA2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{80956555-A512-4190-9CAD-B000C36D6B6B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{DA54F80E-261C-41A2-A855-549A144F2F59}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{19BA08F7-C728-469C-8A35-BFBD3633BE08}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{92EA4134-10D1-418A-91E1-5A0453131A38}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{78906B56-0E81-42A7-AC25-F54C946E1538}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{D436F577-1695-4D2F-8B44-AC76C99E0002}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{3336F667-9049-4D46-98B6-4C743EEBC5B1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{34F4D9A4-42C2-4348-BEF4-E553C84549E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (HKLM\...\{DF6D988A-EEA0-4277-AAB8-158E086E439B}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{3921492E-82D2-4180-8124-E347AD2F2DB4}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (HKLM\...\{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{682B3E4F-696A-42DE-A41C-4C07EA1678B4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{200FEC62-3C34-4D60-9CE8-EC372E01C08F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{4264C020-850B-4F08-ACBE-98205D9C336C}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A726AE06-AAA3-43D1-87E3-70F510314F04}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAF454FC-82CA-4F29-AB31-6A109485E76E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{AB78C965-5C67-409B-8433-D7B5BDB12073}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2009-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\windows\system32\ff_vfw.dll [127488 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2014-04-08] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3525120 2014-11-16] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [216064 2013-12-17] () [File not signed]
HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-17] (Packed With Joy !) [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-07-12 14:22 - 2019-07-12 14:22 - 000016384 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\57404270395de352ac6a365c479a4305\PSIClient.ni.dll
2023-06-29 22:09 - 2015-01-09 08:45 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_CSY.DLL
2023-06-29 22:09 - 2015-01-09 08:44 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2020-05-08 15:17 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\windows\System32\CNMN6PPM.DLL
2019-07-12 14:22 - 2019-07-12 14:22 - 000020992 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\1e1b33afacd8df7000356690de260f82\IAStorCommon.ni.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000467456 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000269824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000073216 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMgr\23e6d4139f7873755107e0eb9dd109b7\IAStorDataMgr.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000363520 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\8fc4aed41432ad73a703ce226b5f065a\IAStorUtil.ni.dll
2019-07-12 14:23 - 2019-07-12 14:23 - 001076224 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorViewModel\ccd9ade906d5a97d42fa9b4a87403833\IAStorViewModel.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 003713536 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSI\9fb44e7de27d31898ca10bc69922a31b\PSI.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000625152 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PsiData\e04aaa9f4b7ab0f6bc5f0ea72ed34b5d\PsiData.ni.dll
2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2013-05-30 23:18 - 2013-05-30 23:18 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\MSVCP140.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\ucrtbase.DLL
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000027136 _____ (Microsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\bab48af25f89a402870b763385ac1697\IAStorDataMgrSvcInterfaces.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2024-06-09 17:29 - 000000828 _____ C:\windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CFA8CC00-5D2D-47B2-81E6-EFDD256381B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DD4656B-E8A5-4C75-A674-DD7752873748}] => (Allow) LPort=2869
FirewallRules: [{1C8F54E1-C1A9-4FC6-B044-F9B12F4EAA1C}] => (Allow) LPort=1900
FirewallRules: [{B41F6CBE-D9C6-496A-94E4-0948723AE97C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{45B061D7-3671-40F0-94D4-922190591A11}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{596B635D-00D4-40B7-A472-4A1234235631}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7230BDC5-9F57-4FDD-B2D8-EF8D7E379D8D}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{F11F979F-CD2B-42BA-A16D-B21CC7DA1CB2}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{893C7404-EA53-4836-B6A8-7E538753DCBF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{D93458A2-EB2C-43EB-A769-9433154AE3CB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{0FB0DC5C-7A67-4DBA-B791-E76B25588CAB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{FD91D051-8AA9-4A39-951C-CFD2125817EF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{200D6F7C-722C-4B33-91C2-F48C1C7D33DC}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7D3CFB67-F0D8-46F4-9296-557ECBB4F1C5}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{B47B4572-693A-4B0D-8691-81D076134CC4}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [TCP Query User{F7719C56-0E6A-4E15-ADFD-1D9099080F95}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [UDP Query User{AD775C85-6CE9-442F-BC0C-F7B9ED859EF1}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [{7B238D2B-FBBB-4D8A-810B-22D78D7C96BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{985A1AB7-8868-428A-81AC-A1E3F2F6A7FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A7C33224-C2A8-4D7F-8DD9-71EF8C4CEFFF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B8B843CA-B764-4A93-BE7C-2419C24A9BD4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3A6C22CE-831C-4CAD-97AB-76944A370BBE}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{868A2FD5-10C8-44ED-B033-E1F11A1BEE6A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{17CB8387-CE93-4E90-9168-FCBED0B734F8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{7E5706A1-9FF9-4EBA-BDD8-000F555326EB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{68DCDDE6-6E53-430C-BF6D-7742A54917FD}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
19-05-2024 12:29:16 Naplánovaný kontrolní bod
01-06-2024 12:24:39 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x3dc
Čas spuštění chybující aplikace: 0x01dab5739e9566b4
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa95e345-2172-11ef-9ccc-0008742d9318
Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x7b8
Čas spuštění chybující aplikace: 0x01dab5739bc68721
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa912085-2172-11ef-9ccc-0008742d9318
Error: (06/01/2024 11:06:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0x15d8
Čas spuštění chybující aplikace: 0x01dab467583a68f0
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ddc2e1f8-205a-11ef-9617-0008742d9318
Error: (05/31/2024 05:37:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0xdcc
Čas spuštění chybující aplikace: 0x01dab36ffee9b3db
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ae3215b3-1f63-11ef-a1b4-0008742d9318
Error: (05/29/2024 06:41:56 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy D:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).
Error: (05/24/2024 10:29:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x6f8
Čas spuštění chybující aplikace: 0x01daadf7b8c211ff
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40cbbad9-1a0c-11ef-9c1e-0008742d9318
Error: (05/24/2024 10:28:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x7e8
Čas spuštění chybující aplikace: 0x01daadf7b5ff194e
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3fd68d1c-1a0c-11ef-9c1e-0008742d9318
Error: (05/22/2024 02:46:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroRd32.exe, verze: 24.2.20759.0, časové razítko: 0x663fccd4
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24499, časové razítko: 0x5d011861
Kód výjimky: 0xc000000d
Posun chyby: 0x00094d4a
ID chybujícího procesu: 0x1148
Čas spuštění chybující aplikace: 0x01daac4435d61c38
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Cesta k chybujícímu modulu: C:\windows\SysWOW64\ntdll.dll
ID zprávy: 478bbf69-1839-11ef-9783-0008742d9318
System errors:
=============
Error: (06/10/2024 12:10:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/09/2024 04:34:17 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NlaSvc bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 02:09:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby SysMain bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 09:14:05 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/09/2024 09:00:33 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 08:50:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).
Error: (06/09/2024 08:50:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.
Error: (06/09/2024 08:49:56 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================Event[0]:
Date: 2015-10-15 19:41:25.202
Description:
Funkce Ochrana v reálném čase u prohledávání Windows Defender zjistila chybu a selhala.
Funkce:Při přístupu
Kód chyb:0x80070013
Popis chyby:Médium je chráněno proti zápisu.
Důvod:Sledování v reálném čase přestalo fungovat z neznámého důvodu. Proveďte obnovení restartováním služby.
==================== Memory info ===========================
BIOS: LENOVO 18CN46WW(V2.55) 05/21/2010
Motherboard: LENOVO NITU1
Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 91%
Total physical RAM: 2008.6 MB
Available physical RAM: 166.08 MB
Total Virtual: 5767.76 MB
Available Virtual: 456.62 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:421.37 GB) (Free:52.33 GB) (Model: ATA WDC WD5000BEVT-2 SCSI Disk Device) NTFS
\\?\Volume{27adc0ef-f9ba-11df-81cd-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B40280FB)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=428 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.7 GB) - (Type=12)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118554
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu logu, velmi pomalé první načítání
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu logu, velmi pomalé první načítání
Fix result of Farbar Recovery Scan Tool (x64) Version: 09.06.2024
Ran by Zdenek (10-06-2024 18:10:05) Run:1
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
C:\windows\System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1227B2A0-E12B-495C-B9DB-75F431BAE420}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
C:\windows\System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5DEA549E-B934-4572-A25A-7BB4C3591383}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
C:\windows\System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{61336800-4408-4CB9-B939-0BCDFB779EAA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
C:\windows\System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
C:\windows\System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{70CEF507-187E-46C6-9DBC-D2061B8F62BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
C:\windows\System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ABBCC82A-5F5B-4B0F-987D-910D58163711}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
C:\windows\System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
C:\windows\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\BcmSqlStartupSvc => removed successfully
BcmSqlStartupSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\IviRegMgr => removed successfully
IviRegMgr => service removed successfully
HKLM\System\CurrentControlSet\Services\RichVideo => removed successfully
RichVideo => service removed successfully
HKLM\System\CurrentControlSet\Services\SQLWriter => removed successfully
SQLWriter => service removed successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483} => moved successfully
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73} => moved successfully
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40} => moved successfully
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6} => moved successfully
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E} => moved successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF} => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A4D439BA-F154-41CD-8F63-5F2E50008E8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF820838-6A45-4C28-A699-F60EC275E4B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F4756313-A293-44C3-862C-F53481BE4ABC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74F5FF56-BC99-4A6A-B6B8-609066A66775}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 48490444 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1247182590 B
Edge => 0 B
Chrome => 1088295216 B
Firefox => 1155413287 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 33058 B
Public => 33058 B
ProgramData => 33058 B
systemprofile => 66244 B
systemprofile32 => 3941753 B
LocalService => 4073997 B
NetworkService => 5360137 B
Zdenek => 3779615644 B
RecycleBin => 24726214065 B
EmptyTemp: => 29.9 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-06-2024 18:44:39)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 18:44:39 ====
Ran by Zdenek (10-06-2024 18:10:05) Run:1
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
C:\windows\System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1227B2A0-E12B-495C-B9DB-75F431BAE420}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
C:\windows\System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5DEA549E-B934-4572-A25A-7BB4C3591383}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
C:\windows\System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{61336800-4408-4CB9-B939-0BCDFB779EAA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
C:\windows\System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
C:\windows\System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{70CEF507-187E-46C6-9DBC-D2061B8F62BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
C:\windows\System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ABBCC82A-5F5B-4B0F-987D-910D58163711}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
C:\windows\System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
C:\windows\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\BcmSqlStartupSvc => removed successfully
BcmSqlStartupSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\IviRegMgr => removed successfully
IviRegMgr => service removed successfully
HKLM\System\CurrentControlSet\Services\RichVideo => removed successfully
RichVideo => service removed successfully
HKLM\System\CurrentControlSet\Services\SQLWriter => removed successfully
SQLWriter => service removed successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483} => moved successfully
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73} => moved successfully
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40} => moved successfully
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6} => moved successfully
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E} => moved successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF} => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A4D439BA-F154-41CD-8F63-5F2E50008E8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF820838-6A45-4C28-A699-F60EC275E4B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F4756313-A293-44C3-862C-F53481BE4ABC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74F5FF56-BC99-4A6A-B6B8-609066A66775}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 48490444 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1247182590 B
Edge => 0 B
Chrome => 1088295216 B
Firefox => 1155413287 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 33058 B
Public => 33058 B
ProgramData => 33058 B
systemprofile => 66244 B
systemprofile32 => 3941753 B
LocalService => 4073997 B
NetworkService => 5360137 B
Zdenek => 3779615644 B
RecycleBin => 24726214065 B
EmptyTemp: => 29.9 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-06-2024 18:44:39)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 18:44:39 ====
-
Rudy
- Site Admin
- Příspěvky: 118554
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu logu, velmi pomalé první načítání
Smazáno. Zlepšilo se načítání?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu logu, velmi pomalé první načítání
Děkuji, ale jen minimálně, stále první načtení Google Chrome trvá skoro 5 minut.
Ale jak jste kdysi psal, nejde udělat Ferrari z Trabanta........
Ale jak jste kdysi psal, nejde udělat Ferrari z Trabanta........
-
Rudy
- Site Admin
- Příspěvky: 118554
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu logu, velmi pomalé první načítání
To sice nejde, ale ještě můžete zkusit defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?