Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.07.2024
Ran by Roman (09-07-2024 13:37:10)
Running from C:\Users\Roman\Desktop\uTorrentPortable
Microsoft Windows 10 Home Version 22H2 19045.4529 (X64) (2021-04-13 20:45:46)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1214479148-1350895280-1617313171-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1214479148-1350895280-1617313171-503 - Limited - Disabled)
Guest (S-1-5-21-1214479148-1350895280-1617313171-501 - Limited - Disabled)
Roman (S-1-5-21-1214479148-1350895280-1617313171-1000 - Administrator - Enabled) => C:\Users\Roman
WDAGUtilityAccount (S-1-5-21-1214479148-1350895280-1617313171-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.03 - Adobe Systems)
Adobe AIR (HKLM-x32\...\{10E33ABF-D7FB-4F47-900A-7973854AB45A}) (Version: 32.0.0.125 - Adobe) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_OMUI.sk-sk_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_OMUI.sk-sk_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_OMUI.sk-sk_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.4.15807.16040 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.6.6121 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1206.2 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.25 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.23.50 - Conexant)
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.6.392 - Corel Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 126.0.6478.127 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.4.1441 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2778 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
IObit Driver Booster 7.1.0.533 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.1.0.533 - lrepacks.ru)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 1.11 - )
Lenovo Patch Utility (HKLM-x32\...\{6E6E7725-C7BC-4C39-8B3F-14B67331A120}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo) Hidden
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)
Lenovo SimpleTap (HKLM\...\{BF601122-9F0A-41A9-BA06-3158D9FB4B80}) (Version: 3.2.0004.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.02.0018 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0005.00 - Lenovo)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Message Center Plus (HKLM\...\{EE4D9822-C7F3-4386-8703-889CDDA22FAA}) (Version: 3.4.0001.00 - Lenovo Group Limited)
Microsoft .NET Framework 4.5.1 (HKLM\...\{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Audio Enhancement Troubleshooter installer (HKLM\...\{6E0351FF-6A71-45C5-A041-D4D9D8067EAF}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Bing Service (HKLM-x32\...\{29905D7F-44F7-4AE3-9CAF-1F3B760E9A8F}) (Version: 2.0.0.9 - Microsoft Corporation)
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) (HKLM\...\{25E80DAA-FD87-DCE5-202C-CC02F6673002}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 126.0.2592.87 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.87 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0409-1000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-041B-1000-0000000FF1CE}_OMUI.sk-sk_{8382BA92-20E3-47B6-971B-F673F0492D4E}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}_OMUI.sk-sk_{8382BA92-20E3-47B6-971B-F673F0492D4E}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0100-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0101-041B-0000-0000000FF1CE}_OMUI.sk-sk_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0116-0409-1000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0015-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (HKLM-x32\...\{90120000-0117-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2007 (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (HKLM-x32\...\{90120000-00BA-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00BA-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (HKLM-x32\...\{90120000-0114-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0044-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - Slovak/Slovenčina (HKLM-x32\...\OMUI.sk-sk) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office O MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0100-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00A1-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (HKLM-x32\...\{90120000-002C-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2007 (HKLM-x32\...\{90120000-002C-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_OMUI.sk-sk_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_OMUI.sk-sk_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_OMUI.sk-sk_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}_OMUI.sk-sk_{0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_OMUI.sk-sk_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0019-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (HKLM\...\{90120000-002A-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (HKLM\...\{90120000-002A-041B-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (HKLM\...\{90120000-0116-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2007 (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0101-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\OneDriveSetup.exe) (Version: 24.116.0609.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Nokia Connectivity Cable Driver (HKLM-x32\...\{972B1D9B-0EAD-49E8-B7D6-3B83FD5665B1}) (Version: 6.83.9.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}) (Version: 6.83.14.1 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 6.83.14.1 - Nokia)
On Screen Display (HKLM\...\OnScreenDisplay) (Version: 6.72.00 - )
Opera Stable 111.0.5168.61 (HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Opera 111.0.5168.61) (Version: 111.0.5168.61 - Opera Software)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Connectivity Solution (HKLM-x32\...\{066D65EA-ED53-44E4-A96A-F81B6E409D2E}) (Version: 7.7.10.0 - Nokia)
PC Connectivity Solution 64 (HKLM\...\{C19CD2D6-1CE1-44B5-8430-32D8E26373AB}) (Version: 7.7.10.0 - Nokia) Hidden
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.5 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.29005 - Realtek Semiconductor Corp.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
Telegram Desktop (HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.6.5 - Telegram FZ-LLC)
ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.76 - Lenovo)
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.0.34.0 - Lenovo)
T-Mobile Communication Center 3.84.01.08 (HKLM-x32\...\{9180B851-7FC1-42E4-948C-D55B39F3CE41}_is1) (Version: 3.84.01.08 - Slovak Telekom a.s.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Web Companion (HKLM-x32\...\{5cf8a75f-116b-42ee-bc29-6c78bfe74f57}) (Version: 8.9.0.992 - Lavasoft) <==== ATTENTION
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2700 - Broadcom Corporation)
Windows Driver Package - Intel (iaStor) hdc (11/29/2011 11.0.0.1032) (HKLM\...\64A62163FE43328D13305746CB8BCC93F2DF6545) (Version: 11/29/2011 11.0.0.1032 - Intel)
Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21) (HKLM\...\FD2ED46D31CE7DF190049D079E92DE03D347A634) (Version: 01/11/2012 1.65.05.21 - Lenovo)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Live Communications Platform (HKLM-x32\...\{D45240D3-B6B3-4FF9-B243-54ECE3E10066}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogaléria (HKLM-x32\...\{97F77D62-5110-4FA3-A2D3-410B92D31199}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}) (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{0B0F231F-CE6A-483D-AA23-77B364F75917}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (HKLM\...\{027E5FAB-1476-4C59-AAB4-32EF28520399}) (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{9D56775A-93F3-44A3-8092-840E3826DE30}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C66824E4-CBB3-4851-BB3F-E8CFD6350923}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{FA6CF94F-DACF-4FE7-959D-55C421B91B17}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{A0C91188-C88F-4E86-93E6-CD7C9A266649}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{DECDCB7C-58CC-4865-91AF-627F9798FE48}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (HKLM-x32\...\{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}) (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{A3389C72-1782-4BB4-BBAA-33345DE52E3F}) (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}) (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{DA54F80E-261C-41A2-A855-549A144F2F59}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{19BA08F7-C728-469C-8A35-BFBD3633BE08}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{92EA4134-10D1-418A-91E1-5A0453131A38}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{6F37D92B-41AA-44B7-80D2-457ABDE11896}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{D436F577-1695-4D2F-8B44-AC76C99E0002}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{3336F667-9049-4D46-98B6-4C743EEBC5B1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{34F4D9A4-42C2-4348-BEF4-E553C84549E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{83C292B7-38A5-440B-A731-07070E81A64F}) (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (HKLM\...\{DF6D988A-EEA0-4277-AAB8-158E086E439B}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{5F44A3A1-5D24-4708-8776-66B42B174C64}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (HKLM\...\{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{682B3E4F-696A-42DE-A41C-4C07EA1678B4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{200FEC62-3C34-4D60-9CE8-EC372E01C08F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}) (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{5E627606-53B9-42D1-97E1-D03F6229E248}) (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{11778DA1-0495-4ED9-972F-F9E0B0367CD5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A726AE06-AAA3-43D1-87E3-70F510314F04}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAF454FC-82CA-4F29-AB31-6A109485E76E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-15] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2403.25.0_x64__k1h2ywk1493x8 [2024-04-09] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-12] (Twitter Inc.)
Vyhľadávanie na webe z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.92.0_x64__8wekyb3d8bbwe [2024-04-10] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-11-29] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2012-09-23 21:44 - 2012-09-23 21:44 - 000010240 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\sk_sk\Acrobat Elements\ContextMenuShim64.sky
2007-03-27 15:30 - 2007-03-27 15:30 - 000028672 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_slk.nlr
2007-03-28 16:00 - 2007-03-28 16:00 - 000997888 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\PCSCM64.dll
2007-03-28 13:03 - 2007-03-28 13:03 - 000891904 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\phonebrowser64.dll
2007-03-15 14:59 - 2007-03-15 14:59 - 000543744 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2024-07-09 12:07 - 000001438 __RSH C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files\Common Files\Lenovo;C:\Program Files (x86)\Windows Live\Shared;C:\SWTOOLS\ReadyApps;C:\Program Files (x86)\Common Files\Lenovo;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Roman\AppData\Local\Microsoft\Windows\Themes\img10.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "LENOVO.TPKNRRES"
HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run: => "ForteConfig"
HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Dolby Advanced Audio v2"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Intel AppUp(SM) center"
HKLM\...\StartupApproved\Run32: => "USB3MON"
HKLM\...\StartupApproved\Run32: => "Lenovo Registration"
HKLM\...\StartupApproved\Run32: => "PCSuiteTrayApplication"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "TMCC"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_66D161819F0EAC1A9819F518A968ED0B"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\StartupApproved\Run: => "Opera Stable"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\StartupApproved\Run: => "OneDriveSetup"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{7BF3D348-7056-4FE8-9CFC-A0FC3171E97C}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [UDP Query User{605FA529-72D2-420F-A235-78A1E7CD1064}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{92752E83-2FB2-4626-9853-E26C769AA30A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{915AB79E-7634-49EB-BD18-1A682530B2B4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{839823E6-0AA4-4168-8DCE-8757AF3ED56D}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5AEBC130-72B5-4A0A-A349-0324D686A8A5}C:\users\roman\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\roman\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{AD83D8A7-937E-4105-BDC0-CA3F31EDBF9B}C:\users\roman\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\roman\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{B18FFFEF-5965-47F0-A578-E7262C06EC8E}] => (Allow) C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{9E2E4950-5BE7-4645-86AE-5D2EF4517DD7}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{1E19457A-22F3-4A62-AA09-59EAD42B25A1}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{6C631DC0-9E13-4086-A7E9-A9559D46C0A0}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{A1C12674-4071-4EB2-87B2-D5A78A387B61}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{9D0C141B-45A6-495C-990A-DBCB3FACF06E}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{444AC600-DDC5-4A1B-80E9-F9326965DC10}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C77FAB12-9EB5-4949-B321-D51D8201BCF5}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe (Lenovo Information Products (Shenzhen) Co.,Ltd -> )
FirewallRules: [{96E32E24-F22E-45DC-B4B7-5AF40B0B1FFC}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe (Lenovo Information Products (Shenzhen) Co.,Ltd -> )
==================== Restore Points =========================
07-07-2024 19:00:56 Windows Zálohovanie
09-07-2024 13:04:07 Removed VIP Access.
09-07-2024 13:08:50 Removed Lenovo Welcome.
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/09/2024 12:29:54 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW. hr = 0x80070006, The handle is invalid..
Operation:
Executing Asynchronous Operation
Context:
Current State: DoSnapshotSet
Error: (07/09/2024 12:27:49 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied..This is often caused by incorrect security settings in either the writer or requestor process.
Operation:
Gathering Writer Data
Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {9ab5007b-e835-4be1-8a3d-5239ba9e26fa}
Error: (07/08/2024 01:23:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4474 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: d84
Start Time: 01dad1293b5e99be
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: 13bb8cd7-726e-429a-baea-b14dddf26e4f
Faulting package full name: Microsoft.Windows.Search_1.14.15.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (07/07/2024 07:09:02 PM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: The Windows Security Center Service was unable to load instances of FirewallProduct from datastore.
Error: (07/07/2024 07:05:33 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Zálohovanie nebolo úspešné. Vyskytla sa chyba: Na tejto jednotke nie je dostatok miesta na uloženie zálohy. Uvoľnite miesto odstránením starších záloh a nepotrebných údajov alebo zmeňte nastavenie zálohovania. (0x81000005).
Error: (07/06/2024 07:26:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4474 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1c0c
Start Time: 01dacfc9816f3d46
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: b5db24d7-c990-403e-a34c-27c9eb1445fb
Faulting package full name: Microsoft.Windows.Search_1.14.15.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (07/06/2024 07:13:14 PM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: The Windows Security Center Service was unable to load instances of FirewallProduct from datastore.
Error: (07/06/2024 08:08:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4474 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1ed8
Start Time: 01dacf4f486f9abc
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: cb47137a-2a38-4807-b110-c68accbb239f
Faulting package full name: Microsoft.Windows.Search_1.14.15.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
System errors:
=============
Error: (07/09/2024 12:44:35 PM) (Source: iaStor) (EventID: 9) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.
Error: (07/09/2024 12:17:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CCleaner Performance Optimizer Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/09/2024 11:58:34 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus – KB2267602 (verzia 1.415.3.0) – Aktuálny kanál (široký).
Error: (07/09/2024 11:58:31 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Microsoft Defender Antivirus bola ukončená s nasledujúcou chybou:
General access denied error
Error: (07/09/2024 09:14:06 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus – KB2267602 (verzia 1.413.760.0) – Aktuálny kanál (široký).
Error: (07/09/2024 09:14:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Microsoft Defender Antivirus bola ukončená s nasledujúcou chybou:
General access denied error
Error: (07/09/2024 09:10:28 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba MessagingService_f69667 bola ukončená s nasledujúcou chybou:
The device is not ready.
Error: (07/08/2024 03:25:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus – KB2267602 (verzia 1.413.760.0) – Aktuálny kanál (široký).
CodeIntegrity:
===============
Date: 2024-07-09 09:10:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-07-07 19:12:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-07-07 19:10:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO H0ET90WW (2.50 ) 01/15/2013
Motherboard: LENOVO 32599VG
Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 52%
Total physical RAM: 7781.46 MB
Available physical RAM: 3733.43 MB
Total Virtual: 15717.46 MB
Available Virtual: 11274.07 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:445.73 GB) (Free:378 GB) (Model: WDC WD5000LPVT-08G33T1) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:17.58 GB) (Free:0.01 GB) (Model: WDC WD5000LPVT-08G33T1) NTFS
\\?\Volume{60246bc4-86ad-11e2-9fb3-806e6f6e6963}\ (SYSTEM_DRV) (Fixed) (Total:1.46 GB) (Free:1.12 GB) NTFS
\\?\Volume{b7361864-0000-0000-0000-c0cc6f000000}\ () (Fixed) (Total:0.98 GB) (Free:0.23 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B7361864)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1006 MB) - (Type=27)
Partition 4: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Dobry den, prosim o kontrolu LOGu dekuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
fantomasik
- Návštěvník
- Příspěvky: 24
- Registrován: 25 pro 2007 12:54
-
fantomasik
- Návštěvník
- Příspěvky: 24
- Registrován: 25 pro 2007 12:54
Re: Dobry den, prosim o kontrolu LOGu dekuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.07.2024
Ran by Roman (administrator) on ROMAN-THINK (LENOVO 32599VG) (09-07-2024 13:25:00)
Running from C:\Users\Roman\Desktop\uTorrentPortable\FRST64.exe
Loaded Profiles: Roman & DefaultAppPool
Platform: Microsoft Windows 10 Home Version 22H2 19045.4529 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
(C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(C:\Program Files\Synaptics\SynTP\SET1944.tmp ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1B80.tmp
(C:\Program Files\Synaptics\SynTP\SET1944.tmp ->) (Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SET1CAE.tmp
(C:\Program Files\Synaptics\SynTP\SET1B5F.tmp ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1944.tmp
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dfrgui.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe <2>
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1B5F.tmp
(svchost.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1AC1.tmp
(The qBittorrent Project) [File not signed] C:\Program Files\qBittorrent\qbittorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [601944 2015-08-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-02] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427416 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [9831832 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-13] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2021-04-13] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2011-07-14] (Leader Technologies Inc -> Lenovo, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PCSuiteTrayApplication] => C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication.exe [227328 2007-03-23] (Nokia) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478600 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [TMCC] => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [MicrosoftEdgeAutoLaunch_66D161819F0EAC1A9819F518A968ED0B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [BingSvc] => C:\Users\Roman\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6687664 2024-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9255640 2024-07-05] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4048800 2024-06-12] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Opera Stable] => C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe [1595296 2024-07-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll [2012-04-01] (Broadcom Corporation -> Broadcom Corporation.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {C8BE2097-B454-47B5-B407-8F2999AEE177} - System32\Tasks\{29F2F256-1C70-4D29-A8B4-865F74ABC896} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {203E1697-10CB-4F36-B461-957C38303576} - System32\Tasks\{33B067E7-90EA-465F-8F99-4621BF3877B0} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {A83A26C6-6CFC-4EFF-A48C-53767455BFF8} - System32\Tasks\{71827D95-300A-4240-B0AA-4AE35833373A} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {DC01DCAF-5B62-4A5A-B6D5-EE557E3CCF92} - System32\Tasks\{A2FB244C-2CB9-4F9A-8907-A34FE525C3F4} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {FB662C9B-8428-4330-B9A7-9A728BE0C9D6} - System32\Tasks\{EB31C6F5-E494-4894-B8F4-827E2CB9C859} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {C1532824-8234-4CA6-AA5D-4686F6B4ECD4} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4979096 2024-07-05] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A6E4C1C4-0B10-4D81-850C-64A7C24B60E1} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7786904 2024-03-14] (Avast Software s.r.o. -> Avast Software)
Task: {E7C51CB7-4025-46CA-B65F-F8B3A141F320} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E72664BF-E7F8-4E50-BCA3-F01E8A5322C4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2024-07-06] (Avast Software s.r.o. -> Avast Software)
Task: {E5861AD7-CBB0-4EFB-8960-9395FE471C27} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {16DABAAC-FA2D-45CA-83CA-8B91E4B3B056} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "4bd12f98-1ce8-4a60-809e-92b792559316" --version "6.25.11131" --silent
Task: {20F25764-C3E7-47A2-B237-2151ADB9EAE5} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {68977B2E-6366-4740-9876-80FFA0E32333} - System32\Tasks\Driver Booster SkipUAC (Roman) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [7735056 2019-11-05] (IObit) [File not signed]
Task: {93B3E416-6D06-477B-A498-3A6D9F2930F3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {71253CE2-BFA1-4F67-BE28-8CF26D0E7E5D} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [855968 2019-12-19] (Lenovo -> Lenovo.)
Task: {8CA53062-F15D-456F-B1D6-008A5151CB26} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264328 2016-12-07] (LENOVO -> ) -> C:\Program Files\Lenovo\Lenovo Solution Center\\UpdateStatus
Task: {67639C76-146D-4A25-9BA9-3819071BDB19} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321608 2016-12-07] (LENOVO -> Lenovo) -> C:\Program Files\Lenovo\Lenovo Solution Center\\/show
Task: {68C17451-3C66-4E3C-80F4-2489EBB3E8F0} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {91D604C4-5684-4128-BA77-D66755BE17C4} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {AAAB1C95-C2A0-4B37-ACCA-24DEE3E7FD94} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [66000 2015-03-23] (LENOVO -> Lenovo)
Task: {6D4D31B2-934A-4658-8553-2D02E613D8A1} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128872 2023-12-20] (Lenovo -> Lenovo)
Task: {53140936-B877-40D5-947C-AF2E4278B19B} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [66920 2023-12-20] (Lenovo -> )
Task: {12B5BA37-45A4-4A42-AE0F-899FC7C269CE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {4B0F4B9E-892F-49B9-8775-2F96B075B7F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {89F5CB92-EF56-4C60-8FC4-D5F18FB76AB7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {3FFCEB6A-FB8F-456C-8552-6E9F12256AC5} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\System32\rundll32.exe [71680 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {AC7B75AB-E94F-4B04-BEB6-75226D1F7A98} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {B3794950-9389-4FAA-A390-A087C04CE69F} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {B5D71717-81FE-498F-A38D-0428A6A50BEA} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {0FE6A629-1F75-4BE3-98C2-720082DB16AE} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {675D4C9C-BBE2-4374-86CE-7A04E4DDCC73} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD5F8AFF-4A0A-4FD7-A235-26F249CEF65D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C97B561-DF63-48FC-A1D0-D77E9597E5C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99A0467F-F79D-4D1A-8ECC-03D822FE8A05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FE9AEC9C-D293-405F-B502-A9DB7A6E6C53} - System32\Tasks\Opera scheduled assistant Autoupdate 1720156412 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {B52177A5-078C-4BFE-A3A1-BBEBFB1FEDAB} - System32\Tasks\Opera scheduled Autoupdate 1720156369 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software)
Task: {A8FDB19B-D610-4A76-9189-3C83436FDFC7} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [189800 2013-06-26] (Lenovo Information Products (Shenzhen) Co.,Ltd -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2644a0cc-481e-4489-a345-76f5ff3c47a6}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{940AABCF-BBB2-46C7-86BB-89CCCB052B21}: [NameServer] 195.146.132.58 195.146.128.62
Tcpip\..\Interfaces\{9adda19c-ad88-4ece-a987-652284a134f2}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-09]
Edge HomePage: Default -> hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-03-01] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [VIP5X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => not found
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default [2024-07-09]
CHR HomePage: Default -> hxxps://www.google.sk/
CHR StartupUrls: Default -> "hxxps://www.bing.com?pc=U316&form=CHROMN"
CHR Extension: (Website Logon) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj [2013-04-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-09]
CHR Extension: (Dokumenty Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-20]
CHR Extension: (Google Drive) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20]
CHR Extension: (YouTube) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-20]
CHR Extension: (Website Logon) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj [2015-07-20]
CHR Extension: (Google Search) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-20]
CHR Extension: (Adobe Acrobat – Vytvoriť PDF) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-07-20]
CHR Extension: (Tabuľky Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-20]
CHR Extension: (Skype Click to Call) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-07-20]
CHR Extension: (Peňaženka Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2015-07-20] [UpdateUrl:hxxp://d1h5tuq46hrbzn.cloudfront.net/abb/chrome/update.xml] <==== ATTENTION
CHR Extension: (Gmail) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-20]
CHR HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx [2012-02-24]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9052568 2024-07-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766360 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1203608 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [18727320 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2024-07-05] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S4 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-02] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [774040 2019-12-19] (Lenovo -> Lenovo.)
S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (LENOVO -> Lenovo)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [292864 2007-03-26] (Nokia.) [File not signed]
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27864 2024-07-05] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20544 2024-07-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229952 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380992 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292936 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84544 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-07-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271944 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548928 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97856 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [942536 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1195992 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203736 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-07-27] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [38768 2021-05-06] (Avast Software s.r.o. -> Avast Software)
U4 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800672 2024-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264040 2015-09-23] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2015-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2015-09-23] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2015-09-23] (ESET, spol. s r.o. -> ESET)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2014-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-19] (Martin Malik - REALiX -> REALiX(tm))
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44232 2019-12-19] (Lenovo -> Lenovo.)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [347224 2020-05-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-10-20] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
R3 tvtvcamd; C:\WINDOWS\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (Lenovo (Japan) Ltd. -> ThinkVantage Communications Utility)
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-07-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-07-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-07-05] (Microsoft Windows -> Microsoft Corporation)
S4 Tvti2c; \SystemRoot\system32\DRIVERS\Tvti2c.sys [X]
S3 vm331avs; \SystemRoot\System32\Drivers\vm331avs.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-09 13:24 - 2024-07-09 13:24 - 000399342 _____ C:\Users\Roman\Documents\cc_20240709_132428.reg
2024-07-09 13:07 - 2011-12-08 04:59 - 000027432 _____ (ThinkVantage Communications Utility) C:\WINDOWS\system32\Drivers\tvtvcamd.sys
2024-07-09 12:41 - 2015-04-18 10:26 - 000427224 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\SASrv.exe
2024-07-09 12:40 - 2024-07-09 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2024-07-09 12:40 - 2024-07-09 12:40 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2024-07-09 12:38 - 2024-07-09 12:45 - 000000000 ____D C:\WINDOWS\LastGood
2024-07-09 12:25 - 2024-07-09 12:25 - 000000000 ____D C:\ProgramData\Piriform
2024-07-09 12:18 - 2024-07-09 13:23 - 000000000 ____D C:\Program Files\CCleaner
2024-07-09 12:18 - 2024-07-09 12:57 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-09 12:18 - 2024-07-09 12:57 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-09 12:18 - 2024-07-09 12:56 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-09 12:18 - 2024-07-09 12:18 - 000002896 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2024-07-09 12:18 - 2024-07-09 12:18 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-09 12:18 - 2024-07-09 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-09 12:03 - 2024-07-09 12:04 - 054159420 _____ C:\Users\Roman\Downloads\ccleaner.zip
2024-07-09 11:39 - 2024-07-09 12:40 - 065142784 _____ C:\Users\Roman\Downloads\CCleaner Portable v.5.65.7632.zip
2024-07-07 19:08 - 2024-07-07 19:08 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2024-07-07 18:44 - 2024-07-06 09:39 - 000314776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-07-06 19:11 - 2024-07-06 19:12 - 000441400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-05 11:53 - 2024-07-05 12:32 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Cleanup Premium.lnk
2024-07-05 11:37 - 2024-07-05 12:25 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-07-05 09:56 - 2024-07-05 10:10 - 000000000 ____D C:\Users\Roman\Downloads\Avast Cleanup Premium 20.1 Build 9137 Multilingual + license
2024-07-05 09:33 - 2024-07-05 09:33 - 000000000 ____D C:\Users\Roman\AppData\Local\Avast Software
2024-07-05 09:31 - 2024-07-07 18:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-07-05 09:31 - 2024-07-05 11:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2024-07-05 09:29 - 2024-07-05 11:52 - 000000000 ____D C:\Program Files\Avast Software
2024-07-05 09:17 - 2024-07-05 09:17 - 000000793 _____ C:\Users\Roman\Desktop\Stiahnuté súbory - odkaz.lnk
2024-07-05 09:05 - 2024-07-05 09:05 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-07-05 08:54 - 2024-07-05 09:29 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-07-05 08:45 - 2024-07-09 13:24 - 000000000 ____D C:\Users\Roman\AppData\Roaming\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\Users\Roman\AppData\Local\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\Program Files\qBittorrent
2024-07-05 08:16 - 2024-07-05 08:28 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-05 07:23 - 2024-07-05 07:23 - 000000000 ____D C:\Users\Roman\Downloads\Avast Premium Security
2024-07-05 07:13 - 2024-07-05 16:28 - 000003990 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1720156412
2024-07-05 07:13 - 2024-07-05 16:28 - 000003720 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1720156369
2024-07-05 07:13 - 2024-07-05 07:13 - 000001395 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2024-07-05 07:13 - 2024-07-05 07:13 - 000000000 ____D C:\Users\Roman\AppData\Local\Opera Software
2024-07-05 07:08 - 2024-07-05 08:26 - 000000000 ____D C:\Users\Roman\AppData\Local\Lavasoft
2024-07-05 07:08 - 2024-07-05 07:08 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Lavasoft
2024-07-05 07:08 - 2024-07-05 07:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2024-07-05 07:05 - 2024-07-05 07:05 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2024-07-05 07:03 - 2024-07-05 08:26 - 000000000 ____D C:\ProgramData\Lavasoft
2024-07-05 07:02 - 2024-07-05 08:29 - 000000000 ____D C:\Users\Roman\AppData\Roaming\BitTorrent
2024-07-05 07:02 - 2024-07-05 07:02 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Opera Software
2024-07-05 07:02 - 2024-07-05 07:02 - 000000000 ____D C:\Users\Roman\AppData\Local\Adaware
2024-07-05 07:01 - 2024-07-05 07:02 - 005275768 _____ (BitTorrent Inc.) C:\Users\Roman\Desktop\BitTorrent.exe
2024-07-05 06:57 - 2024-07-05 06:57 - 000030302 _____ C:\Users\Roman\Downloads\[SkT]Avast_Premium_Security_23.3.6058_(x86_x64) (1).torrent
2024-07-05 06:56 - 2024-07-05 06:56 - 000030302 _____ C:\Users\Roman\Downloads\[SkT]Avast_Premium_Security_23.3.6058_(x86_x64).torrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\LocalLow\uTorrent.WebView2
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\LocalLow\uTorrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\Local\uTorrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\Local\BitTorrentHelper
2024-07-05 06:53 - 2024-07-09 13:25 - 000000000 ____D C:\Users\Roman\Desktop\uTorrentPortable
2024-06-12 10:44 - 2024-06-12 10:44 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-09 13:27 - 2022-08-10 18:07 - 000000000 ____D C:\FRST
2024-07-09 13:10 - 2021-04-13 22:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2024-07-09 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-09 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-09 13:10 - 2017-12-17 20:28 - 000000000 ____D C:\Users\Roman\AppData\Local\Packages
2024-07-09 13:10 - 2013-03-07 00:42 - 000000000 ____D C:\Program Files (x86)\Lenovo
2024-07-09 13:08 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-07-09 13:08 - 2016-09-13 15:59 - 000000000 ____D C:\Program Files (x86)\USB Camera
2024-07-09 13:08 - 2013-03-07 00:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\System
2024-07-09 13:07 - 2013-03-07 00:39 - 000000000 ____D C:\Program Files (x86)\Cisco
2024-07-09 13:05 - 2013-03-07 00:55 - 000000000 ____D C:\Program Files (x86)\Symantec
2024-07-09 12:56 - 2021-04-13 22:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-09 09:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-07 19:08 - 2019-11-15 18:16 - 000000000 ____D C:\ProgramData\AVAST Software
2024-07-07 19:07 - 2021-04-13 22:44 - 000003700 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2024-07-07 19:07 - 2021-04-13 22:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-07 19:07 - 2021-04-13 22:10 - 000008192 ___SH C:\DumpStack.log.tmp
2024-07-07 19:06 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-07 18:44 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-06 10:57 - 2022-08-12 22:18 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-06 10:57 - 2021-12-12 20:21 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1214479148-1350895280-1617313171-1000
2024-07-06 10:57 - 2021-04-13 22:44 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-06 10:57 - 2021-04-13 22:44 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1214479148-1350895280-1617313171-1000
2024-07-05 12:47 - 2021-04-13 22:44 - 000002442 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Roman)
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{EB31C6F5-E494-4894-B8F4-827E2CB9C859}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{A2FB244C-2CB9-4F9A-8907-A34FE525C3F4}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{71827D95-300A-4240-B0AA-4AE35833373A}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{33B067E7-90EA-465F-8F99-4621BF3877B0}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{29F2F256-1C70-4D29-A8B4-865F74ABC896}
2024-07-05 12:44 - 2022-03-24 21:20 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Telegram Desktop
2024-07-05 12:44 - 2014-09-29 04:25 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2024-07-05 12:44 - 2011-02-24 19:03 - 000000000 ____D C:\SWTOOLS
2024-07-05 12:32 - 2019-11-15 18:25 - 000000000 ____D C:\Users\Roman\AppData\Roaming\AVAST Software
2024-07-05 08:34 - 2018-08-25 12:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-07-05 07:25 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-07-05 07:13 - 2021-12-15 22:31 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-05 07:11 - 2024-06-08 05:42 - 000000000 ____D C:\Log
2024-07-05 07:11 - 2010-11-21 05:27 - 000918944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-07-04 10:04 - 2020-06-06 00:33 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-02 13:51 - 2021-04-29 18:38 - 000002382 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-27 10:11 - 2013-04-26 16:50 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-06-27 10:11 - 2013-03-07 00:51 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-06-20 15:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-06-12 19:19 - 2021-04-13 22:33 - 001806644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-12 19:19 - 2016-10-02 07:20 - 000642658 _____ C:\WINDOWS\system32\perfh01B.dat
2024-06-12 19:19 - 2016-10-02 07:20 - 000195808 _____ C:\WINDOWS\system32\perfc01B.dat
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-12 11:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-12 11:41 - 2021-04-13 22:15 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-12 10:04 - 2013-11-30 06:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-12 09:52 - 2013-11-30 06:35 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories ========
2013-04-26 16:50 - 2013-04-26 16:50 - 000090624 _____ () C:\Users\Public\AlexaNSISPlugin.4892.dll
2013-04-26 16:50 - 2015-07-12 21:51 - 000151090 _____ () C:\Users\Roman\AppData\Roaming\AbsoluteReminder.xml
2013-09-29 18:10 - 2015-04-01 21:33 - 000076976 _____ () C:\Users\Roman\AppData\Roaming\LoJackSetup.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Roman (administrator) on ROMAN-THINK (LENOVO 32599VG) (09-07-2024 13:25:00)
Running from C:\Users\Roman\Desktop\uTorrentPortable\FRST64.exe
Loaded Profiles: Roman & DefaultAppPool
Platform: Microsoft Windows 10 Home Version 22H2 19045.4529 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
(C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(C:\Program Files\Synaptics\SynTP\SET1944.tmp ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1B80.tmp
(C:\Program Files\Synaptics\SynTP\SET1944.tmp ->) (Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SET1CAE.tmp
(C:\Program Files\Synaptics\SynTP\SET1B5F.tmp ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1944.tmp
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dfrgui.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe <2>
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(services.exe ->) (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1B5F.tmp
(svchost.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1AC1.tmp
(The qBittorrent Project) [File not signed] C:\Program Files\qBittorrent\qbittorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [601944 2015-08-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-02] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427416 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [9831832 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-13] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2021-04-13] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2011-07-14] (Leader Technologies Inc -> Lenovo, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PCSuiteTrayApplication] => C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication.exe [227328 2007-03-23] (Nokia) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478600 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [TMCC] => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [MicrosoftEdgeAutoLaunch_66D161819F0EAC1A9819F518A968ED0B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [BingSvc] => C:\Users\Roman\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6687664 2024-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9255640 2024-07-05] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4048800 2024-06-12] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [Opera Stable] => C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe [1595296 2024-07-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll [2012-04-01] (Broadcom Corporation -> Broadcom Corporation.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {C8BE2097-B454-47B5-B407-8F2999AEE177} - System32\Tasks\{29F2F256-1C70-4D29-A8B4-865F74ABC896} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {203E1697-10CB-4F36-B461-957C38303576} - System32\Tasks\{33B067E7-90EA-465F-8F99-4621BF3877B0} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {A83A26C6-6CFC-4EFF-A48C-53767455BFF8} - System32\Tasks\{71827D95-300A-4240-B0AA-4AE35833373A} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {DC01DCAF-5B62-4A5A-B6D5-EE557E3CCF92} - System32\Tasks\{A2FB244C-2CB9-4F9A-8907-A34FE525C3F4} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {FB662C9B-8428-4330-B9A7-9A728BE0C9D6} - System32\Tasks\{EB31C6F5-E494-4894-B8F4-827E2CB9C859} => C:\Program Files (x86)\T-Mobile Communication Center\TMCC.exe [843776 2012-05-03] (Slovak Telekom a.s.) [File not signed]
Task: {C1532824-8234-4CA6-AA5D-4686F6B4ECD4} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4979096 2024-07-05] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A6E4C1C4-0B10-4D81-850C-64A7C24B60E1} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7786904 2024-03-14] (Avast Software s.r.o. -> Avast Software)
Task: {E7C51CB7-4025-46CA-B65F-F8B3A141F320} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E72664BF-E7F8-4E50-BCA3-F01E8A5322C4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2024-07-06] (Avast Software s.r.o. -> Avast Software)
Task: {E5861AD7-CBB0-4EFB-8960-9395FE471C27} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {16DABAAC-FA2D-45CA-83CA-8B91E4B3B056} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "4bd12f98-1ce8-4a60-809e-92b792559316" --version "6.25.11131" --silent
Task: {20F25764-C3E7-47A2-B237-2151ADB9EAE5} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {68977B2E-6366-4740-9876-80FFA0E32333} - System32\Tasks\Driver Booster SkipUAC (Roman) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [7735056 2019-11-05] (IObit) [File not signed]
Task: {93B3E416-6D06-477B-A498-3A6D9F2930F3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {71253CE2-BFA1-4F67-BE28-8CF26D0E7E5D} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [855968 2019-12-19] (Lenovo -> Lenovo.)
Task: {8CA53062-F15D-456F-B1D6-008A5151CB26} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264328 2016-12-07] (LENOVO -> ) -> C:\Program Files\Lenovo\Lenovo Solution Center\\UpdateStatus
Task: {67639C76-146D-4A25-9BA9-3819071BDB19} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321608 2016-12-07] (LENOVO -> Lenovo) -> C:\Program Files\Lenovo\Lenovo Solution Center\\/show
Task: {68C17451-3C66-4E3C-80F4-2489EBB3E8F0} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {91D604C4-5684-4128-BA77-D66755BE17C4} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {AAAB1C95-C2A0-4B37-ACCA-24DEE3E7FD94} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [66000 2015-03-23] (LENOVO -> Lenovo)
Task: {6D4D31B2-934A-4658-8553-2D02E613D8A1} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128872 2023-12-20] (Lenovo -> Lenovo)
Task: {53140936-B877-40D5-947C-AF2E4278B19B} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [66920 2023-12-20] (Lenovo -> )
Task: {12B5BA37-45A4-4A42-AE0F-899FC7C269CE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {4B0F4B9E-892F-49B9-8775-2F96B075B7F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {89F5CB92-EF56-4C60-8FC4-D5F18FB76AB7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {3FFCEB6A-FB8F-456C-8552-6E9F12256AC5} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\System32\rundll32.exe [71680 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {AC7B75AB-E94F-4B04-BEB6-75226D1F7A98} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {B3794950-9389-4FAA-A390-A087C04CE69F} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {B5D71717-81FE-498F-A38D-0428A6A50BEA} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {0FE6A629-1F75-4BE3-98C2-720082DB16AE} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {675D4C9C-BBE2-4374-86CE-7A04E4DDCC73} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD5F8AFF-4A0A-4FD7-A235-26F249CEF65D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C97B561-DF63-48FC-A1D0-D77E9597E5C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99A0467F-F79D-4D1A-8ECC-03D822FE8A05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FE9AEC9C-D293-405F-B502-A9DB7A6E6C53} - System32\Tasks\Opera scheduled assistant Autoupdate 1720156412 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {B52177A5-078C-4BFE-A3A1-BBEBFB1FEDAB} - System32\Tasks\Opera scheduled Autoupdate 1720156369 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software)
Task: {A8FDB19B-D610-4A76-9189-3C83436FDFC7} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [189800 2013-06-26] (Lenovo Information Products (Shenzhen) Co.,Ltd -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2644a0cc-481e-4489-a345-76f5ff3c47a6}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{940AABCF-BBB2-46C7-86BB-89CCCB052B21}: [NameServer] 195.146.132.58 195.146.128.62
Tcpip\..\Interfaces\{9adda19c-ad88-4ece-a987-652284a134f2}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-09]
Edge HomePage: Default -> hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-03-01] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [VIP5X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => not found
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default [2024-07-09]
CHR HomePage: Default -> hxxps://www.google.sk/
CHR StartupUrls: Default -> "hxxps://www.bing.com?pc=U316&form=CHROMN"
CHR Extension: (Website Logon) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj [2013-04-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-09]
CHR Extension: (Dokumenty Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-20]
CHR Extension: (Google Drive) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20]
CHR Extension: (YouTube) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-20]
CHR Extension: (Website Logon) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj [2015-07-20]
CHR Extension: (Google Search) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-20]
CHR Extension: (Adobe Acrobat – Vytvoriť PDF) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-07-20]
CHR Extension: (Tabuľky Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-20]
CHR Extension: (Skype Click to Call) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-07-20]
CHR Extension: (Peňaženka Google) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-20]
CHR Extension: (Amazon for Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2015-07-20] [UpdateUrl:hxxp://d1h5tuq46hrbzn.cloudfront.net/abb/chrome/update.xml] <==== ATTENTION
CHR Extension: (Gmail) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-20]
CHR HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files (x86)\Amazon\ABB\AmazonChrome-lenovo-abb.crx [2012-02-24]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9052568 2024-07-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766360 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1203608 2024-07-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [18727320 2024-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2024-07-05] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S4 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-02] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [774040 2019-12-19] (Lenovo -> Lenovo.)
S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (LENOVO -> Lenovo)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [292864 2007-03-26] (Nokia.) [File not signed]
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27864 2024-07-05] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20544 2024-07-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229952 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380992 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292936 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84544 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-07-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271944 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548928 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97856 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [942536 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1195992 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203736 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-07-27] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [38768 2021-05-06] (Avast Software s.r.o. -> Avast Software)
U4 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800672 2024-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264040 2015-09-23] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2015-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2015-09-23] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2015-09-23] (ESET, spol. s r.o. -> ESET)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2014-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-19] (Martin Malik - REALiX -> REALiX(tm))
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44232 2019-12-19] (Lenovo -> Lenovo.)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [347224 2020-05-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-10-20] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
R3 tvtvcamd; C:\WINDOWS\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (Lenovo (Japan) Ltd. -> ThinkVantage Communications Utility)
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-07-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-07-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-07-05] (Microsoft Windows -> Microsoft Corporation)
S4 Tvti2c; \SystemRoot\system32\DRIVERS\Tvti2c.sys [X]
S3 vm331avs; \SystemRoot\System32\Drivers\vm331avs.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-09 13:24 - 2024-07-09 13:24 - 000399342 _____ C:\Users\Roman\Documents\cc_20240709_132428.reg
2024-07-09 13:07 - 2011-12-08 04:59 - 000027432 _____ (ThinkVantage Communications Utility) C:\WINDOWS\system32\Drivers\tvtvcamd.sys
2024-07-09 12:41 - 2015-04-18 10:26 - 000427224 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\SASrv.exe
2024-07-09 12:40 - 2024-07-09 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2024-07-09 12:40 - 2024-07-09 12:40 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2024-07-09 12:38 - 2024-07-09 12:45 - 000000000 ____D C:\WINDOWS\LastGood
2024-07-09 12:25 - 2024-07-09 12:25 - 000000000 ____D C:\ProgramData\Piriform
2024-07-09 12:18 - 2024-07-09 13:23 - 000000000 ____D C:\Program Files\CCleaner
2024-07-09 12:18 - 2024-07-09 12:57 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-09 12:18 - 2024-07-09 12:57 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-09 12:18 - 2024-07-09 12:56 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-09 12:18 - 2024-07-09 12:18 - 000002896 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2024-07-09 12:18 - 2024-07-09 12:18 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-09 12:18 - 2024-07-09 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-09 12:03 - 2024-07-09 12:04 - 054159420 _____ C:\Users\Roman\Downloads\ccleaner.zip
2024-07-09 11:39 - 2024-07-09 12:40 - 065142784 _____ C:\Users\Roman\Downloads\CCleaner Portable v.5.65.7632.zip
2024-07-07 19:08 - 2024-07-07 19:08 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2024-07-07 18:44 - 2024-07-06 09:39 - 000314776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-07-06 19:11 - 2024-07-06 19:12 - 000441400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-05 11:53 - 2024-07-05 12:32 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Cleanup Premium.lnk
2024-07-05 11:37 - 2024-07-05 12:25 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-07-05 09:56 - 2024-07-05 10:10 - 000000000 ____D C:\Users\Roman\Downloads\Avast Cleanup Premium 20.1 Build 9137 Multilingual + license
2024-07-05 09:33 - 2024-07-05 09:33 - 000000000 ____D C:\Users\Roman\AppData\Local\Avast Software
2024-07-05 09:31 - 2024-07-07 18:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-07-05 09:31 - 2024-07-05 11:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2024-07-05 09:29 - 2024-07-05 11:52 - 000000000 ____D C:\Program Files\Avast Software
2024-07-05 09:17 - 2024-07-05 09:17 - 000000793 _____ C:\Users\Roman\Desktop\Stiahnuté súbory - odkaz.lnk
2024-07-05 09:05 - 2024-07-05 09:05 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-07-05 08:54 - 2024-07-05 09:29 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-07-05 08:45 - 2024-07-09 13:24 - 000000000 ____D C:\Users\Roman\AppData\Roaming\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\Users\Roman\AppData\Local\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-07-05 08:45 - 2024-07-05 08:45 - 000000000 ____D C:\Program Files\qBittorrent
2024-07-05 08:16 - 2024-07-05 08:28 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-05 07:23 - 2024-07-05 07:23 - 000000000 ____D C:\Users\Roman\Downloads\Avast Premium Security
2024-07-05 07:13 - 2024-07-05 16:28 - 000003990 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1720156412
2024-07-05 07:13 - 2024-07-05 16:28 - 000003720 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1720156369
2024-07-05 07:13 - 2024-07-05 07:13 - 000001395 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2024-07-05 07:13 - 2024-07-05 07:13 - 000000000 ____D C:\Users\Roman\AppData\Local\Opera Software
2024-07-05 07:08 - 2024-07-05 08:26 - 000000000 ____D C:\Users\Roman\AppData\Local\Lavasoft
2024-07-05 07:08 - 2024-07-05 07:08 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Lavasoft
2024-07-05 07:08 - 2024-07-05 07:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2024-07-05 07:05 - 2024-07-05 07:05 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2024-07-05 07:03 - 2024-07-05 08:26 - 000000000 ____D C:\ProgramData\Lavasoft
2024-07-05 07:02 - 2024-07-05 08:29 - 000000000 ____D C:\Users\Roman\AppData\Roaming\BitTorrent
2024-07-05 07:02 - 2024-07-05 07:02 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Opera Software
2024-07-05 07:02 - 2024-07-05 07:02 - 000000000 ____D C:\Users\Roman\AppData\Local\Adaware
2024-07-05 07:01 - 2024-07-05 07:02 - 005275768 _____ (BitTorrent Inc.) C:\Users\Roman\Desktop\BitTorrent.exe
2024-07-05 06:57 - 2024-07-05 06:57 - 000030302 _____ C:\Users\Roman\Downloads\[SkT]Avast_Premium_Security_23.3.6058_(x86_x64) (1).torrent
2024-07-05 06:56 - 2024-07-05 06:56 - 000030302 _____ C:\Users\Roman\Downloads\[SkT]Avast_Premium_Security_23.3.6058_(x86_x64).torrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\LocalLow\uTorrent.WebView2
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\LocalLow\uTorrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\Local\uTorrent
2024-07-05 06:55 - 2024-07-05 06:55 - 000000000 ____D C:\Users\Roman\AppData\Local\BitTorrentHelper
2024-07-05 06:53 - 2024-07-09 13:25 - 000000000 ____D C:\Users\Roman\Desktop\uTorrentPortable
2024-06-12 10:44 - 2024-06-12 10:44 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-09 13:27 - 2022-08-10 18:07 - 000000000 ____D C:\FRST
2024-07-09 13:10 - 2021-04-13 22:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2024-07-09 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-09 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-09 13:10 - 2017-12-17 20:28 - 000000000 ____D C:\Users\Roman\AppData\Local\Packages
2024-07-09 13:10 - 2013-03-07 00:42 - 000000000 ____D C:\Program Files (x86)\Lenovo
2024-07-09 13:08 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-07-09 13:08 - 2016-09-13 15:59 - 000000000 ____D C:\Program Files (x86)\USB Camera
2024-07-09 13:08 - 2013-03-07 00:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2024-07-09 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\System
2024-07-09 13:07 - 2013-03-07 00:39 - 000000000 ____D C:\Program Files (x86)\Cisco
2024-07-09 13:05 - 2013-03-07 00:55 - 000000000 ____D C:\Program Files (x86)\Symantec
2024-07-09 12:56 - 2021-04-13 22:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-09 09:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-07 19:08 - 2019-11-15 18:16 - 000000000 ____D C:\ProgramData\AVAST Software
2024-07-07 19:07 - 2021-04-13 22:44 - 000003700 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2024-07-07 19:07 - 2021-04-13 22:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-07 19:07 - 2021-04-13 22:10 - 000008192 ___SH C:\DumpStack.log.tmp
2024-07-07 19:06 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-07 18:44 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-06 10:57 - 2022-08-12 22:18 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-06 10:57 - 2021-12-12 20:21 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1214479148-1350895280-1617313171-1000
2024-07-06 10:57 - 2021-04-13 22:44 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-06 10:57 - 2021-04-13 22:44 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1214479148-1350895280-1617313171-1000
2024-07-05 12:47 - 2021-04-13 22:44 - 000002442 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Roman)
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{EB31C6F5-E494-4894-B8F4-827E2CB9C859}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{A2FB244C-2CB9-4F9A-8907-A34FE525C3F4}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{71827D95-300A-4240-B0AA-4AE35833373A}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{33B067E7-90EA-465F-8F99-4621BF3877B0}
2024-07-05 12:46 - 2022-08-12 22:18 - 000002198 _____ C:\WINDOWS\system32\Tasks\{29F2F256-1C70-4D29-A8B4-865F74ABC896}
2024-07-05 12:44 - 2022-03-24 21:20 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Telegram Desktop
2024-07-05 12:44 - 2014-09-29 04:25 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2024-07-05 12:44 - 2011-02-24 19:03 - 000000000 ____D C:\SWTOOLS
2024-07-05 12:32 - 2019-11-15 18:25 - 000000000 ____D C:\Users\Roman\AppData\Roaming\AVAST Software
2024-07-05 08:34 - 2018-08-25 12:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-07-05 07:25 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-07-05 07:13 - 2021-12-15 22:31 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-05 07:11 - 2024-06-08 05:42 - 000000000 ____D C:\Log
2024-07-05 07:11 - 2010-11-21 05:27 - 000918944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-07-04 10:04 - 2020-06-06 00:33 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-02 13:51 - 2021-04-29 18:38 - 000002382 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-27 10:11 - 2013-04-26 16:50 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-06-27 10:11 - 2013-03-07 00:51 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-06-20 15:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-06-12 19:19 - 2021-04-13 22:33 - 001806644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-12 19:19 - 2016-10-02 07:20 - 000642658 _____ C:\WINDOWS\system32\perfh01B.dat
2024-06-12 19:19 - 2016-10-02 07:20 - 000195808 _____ C:\WINDOWS\system32\perfc01B.dat
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-12 15:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-12 11:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-12 11:41 - 2021-04-13 22:15 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-12 10:04 - 2013-11-30 06:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-12 09:52 - 2013-11-30 06:35 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories ========
2013-04-26 16:50 - 2013-04-26 16:50 - 000090624 _____ () C:\Users\Public\AlexaNSISPlugin.4892.dll
2013-04-26 16:50 - 2015-07-12 21:51 - 000151090 _____ () C:\Users\Roman\AppData\Roaming\AbsoluteReminder.xml
2013-09-29 18:10 - 2015-04-01 21:33 - 000076976 _____ () C:\Users\Roman\AppData\Roaming\LoJackSetup.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dobry den, prosim o kontrolu LOGu dekuji
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Roman\Desktop\uTorrentPortable jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte. Podle logu jsou zapnuty oba antiviry (WinDef i Avast). Jede z nich vypněte, v PC může být rezidentně funkční jen jeden AV, jnak dochází k sw kolizi.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {93B3E416-6D06-477B-A498-3A6D9F2930F3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Toolbar: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
EmptyTemp:
Hosts:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
fantomasik
- Návštěvník
- Příspěvky: 24
- Registrován: 25 pro 2007 12:54
Re: Dobry den, prosim o kontrolu LOGu dekuji
Fix result of Farbar Recovery Scan Tool (x64) Version: 01.07.2024
Ran by Roman (09-07-2024 14:33:09) Run:2
Running from C:\Users\Roman\Desktop\uTorrentPortable
Loaded Profiles: Roman & DefaultAppPool
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {93B3E416-6D06-477B-A498-3A6D9F2930F3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Toolbar: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{93B3E416-6D06-477B-A498-3A6D9F2930F3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93B3E416-6D06-477B-A498-3A6D9F2930F3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164}" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
"HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9505831 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 268758220 B
Edge => 0 B
Chrome => 113840350 B
Firefox => 0 B
Opera => 217857 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Roman => 337041556 B
DefaultAppPool => 337041556 B
RecycleBin => 1546039 B
EmptyTemp: => 1018.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 09-07-2024 18:07:53)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 18:07:53 ====
Ran by Roman (09-07-2024 14:33:09) Run:2
Running from C:\Users\Roman\Desktop\uTorrentPortable
Loaded Profiles: Roman & DefaultAppPool
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {93B3E416-6D06-477B-A498-3A6D9F2930F3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Toolbar: HKU\S-1-5-21-1214479148-1350895280-1617313171-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{93B3E416-6D06-477B-A498-3A6D9F2930F3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93B3E416-6D06-477B-A498-3A6D9F2930F3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{28A512FF-1BDB-4A7D-8959-69AFF4F38164}" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
"HKU\S-1-5-21-1214479148-1350895280-1617313171-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9505831 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 268758220 B
Edge => 0 B
Chrome => 113840350 B
Firefox => 0 B
Opera => 217857 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Roman => 337041556 B
DefaultAppPool => 337041556 B
RecycleBin => 1546039 B
EmptyTemp: => 1018.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 09-07-2024 18:07:53)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 18:07:53 ====
-
fantomasik
- Návštěvník
- Příspěvky: 24
- Registrován: 25 pro 2007 12:54
Re: Dobry den, prosim o kontrolu LOGu dekuji
Ako mam prosim Vas vymazat windows defender? pravidelna kontrola vo WD je vypnuta. Mam jeste neco vypnout?
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dobry den, prosim o kontrolu LOGu dekuji
Neřekl jsem vymazat, ale vypnout. WinDef je součást systému, kterou nelze odinstalovat, a už vůbec ne vymazat. V systému musí bát funkční pouze 1 AV, jinak vzniká sw kolize, PC se zpomaluje a AV nemusí reagovat korektně. Jde o toto:
U jednoho z AV musí být uvedeno "Disabled" U WinDef se to ovládá z ovl. panelů a v Avastu v jeho menu.AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?