zpomalené PC a nefunguje domací sít a myš
Napsal: 09 lis 2020 18:30
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2020
Ran by matus (administrator) on DESKTOP-QCNA7PB (HP HP Pavilion Notebook) (09-11-2020 18:08:07)
Running from C:\Users\matus\Downloads
Loaded Profiles: matus
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
() [File not signed] C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(AVerMedia TECHNOLOGIES, Inc -> ) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe
(AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Elgato Systems -> Elgato Systems GmbH) C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\matus\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Power Technology -> ) [File not signed] C:\Program Files (x86)\DFX\DFX.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe <3>
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync-inotify.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET Security\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1325240 2018-11-20] (Power Technology -> ) [File not signed]
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376504 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [24720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [223096 2012-04-17] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2311840 2020-03-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [BDFE749FBD481E3AA828287100E5863D96D31C94._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [752736 2012-10-08] (ZONER software, a.s. -> ZONER software)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\Installer\chrmstp.exe [2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2020-11-09]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2019-04-27]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe (AVerMedia TECHNOLOGIES, Inc -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2019-04-27]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration THE SETTLERS - Heritage of Kings.LNK [2019-11-08]
ShortcutTarget: Registration THE SETTLERS - Heritage of Kings.LNK -> D:\Support\Register\RegistrationReminder.exe (No File)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2018-07-07]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {043EC152-057C-41EA-AC3D-CC68A32EAB7E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {26C902A8-54AC-49D8-BA98-43F84C0C7B28} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2C612CDB-093E-483F-BDA3-F303DDB00390} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D72E9B4-2067-416E-9C20-AE7C8B36A708} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5251680 2020-09-04] (Avast Software s.r.o. -> Avast Software)
Task: {33E53BDC-E52F-48D2-B9C1-6B56466053C1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {41DA5234-338C-4317-80DE-CE806381A426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {57A13B4C-ADF3-45B3-B871-37DED4DD25D2} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {5E231D9E-2E69-4DFC-8B2C-D691F6643B4B} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [1174936 2019-07-30] (Greatis Software LLC -> Greatis Software)
Task: {634C520A-AAC7-4723-9AA0-570522160B23} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {69355DF0-512F-4D85-AF2A-170C3B891E5E} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [5524040 2019-03-08] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {6B385918-808A-4134-B76B-772CB00432B0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D6A7D55-E421-4652-925C-BF832FB65AB9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {70017988-FBA3-4AF1-A45B-A86EBE108EB8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4496488 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
Task: {89A994EB-F369-489F-AB1B-35E07019F0B3} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [3551704 2020-11-09] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid f2dc0f90-4b55-46ce-ad2c-a0e0717dbe08
Task: {8E0463AB-6520-4706-801B-8D230C4FE109} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1146776 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DD69C06-47E4-4612-8CA1-DF3FB6A17C2A} - System32\Tasks\ASC12_SkipUac_matus => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {B80E7929-DC58-4B00-8337-F3797051FFA2} - System32\Tasks\WD Device Agent Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720632 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {C5867709-05FE-439A-801E-1E4F80419A9B} - System32\Tasks\WD Discovery Service Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75512 2020-03-29] (Western Digital Technologies, Inc. -> )
Task: {D2EFBC94-C2C3-432E-98D8-27F52A22B7C2} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1180488 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Task: {D433A34A-13B3-4743-A9E7-A946113327CB} - System32\Tasks\Zoner.Updater.S-1-5-21-618738485-2318971794-796116561-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [2693712 2020-11-09] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {F062C002-C0DF-47E8-8666-622BAB897FFA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6F22C70-8C0D-4F2A-861C-DA299649F4F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {FF946805-AF91-4307-8A05-08C520CD4C44} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0a108eec-fd3e-4a94-8677-90324982d730}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1193c1da-f4e5-4664-a9a4-23db8fe0718a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3e1f071f-7bfe-4622-b640-ebeae25eee8c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{93d62c76-7eed-4d4c-bfe4-f830274b5da6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{ef08dffa-d039-4b3f-b6c2-b19329588074}: [NameServer] 100.124.96.1
Edge:
======
DownloadDir: C:\Users\matus\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\matus\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default [2020-11-09]
CHR Notifications: Default -> hxxps://apkpure.ai; hxxps://en.softonic.com; hxxps://eu1.badoo.com; hxxps://gadgets.ndtv.com; hxxps://www.facebook.com; hxxps://www.svetandroida.cz
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR Extension: (Seznam doplněk - Email) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-04-14]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-14]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8450976 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [360408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1187512 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2748520 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\elevation_service.exe [1348304 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [377664 2015-06-25] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [771072 2017-02-06] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 D-Link SharePort Plus Helper; C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe [49152 2011-03-25] () [File not signed]
R2 EyeTV Netstream; C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe [400864 2013-04-15] (Elgato Systems -> Elgato Systems GmbH)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [7509152 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 StreamEngineService; C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe [1953712 2020-02-27] (AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [367232 2019-06-26] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-11-09] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59312 2020-11-09] (Avast Software s.r.o. -> Avast Software)
S3 AVerFx2hbtv64; C:\WINDOWS\system32\drivers\AVerFx2hbtv64.sys [691968 2012-09-19] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [871048 2016-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET, spol. s r.o. -> ESET)
S4 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [40304 2019-09-04] (Greatis Software LLC -> Greatis Software)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [82816 2018-07-26] (VSO Software) [File not signed]
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2013-08-14] (Corel Corporation -> Corel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R2 sxuptp; C:\WINDOWS\System32\drivers\sxuptp.sys [317792 2015-09-03] (D-LINK CORPORATION -> silex technology, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U1 aswbdisk; no ImagePath
U1 netfilter2; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-09 18:08 - 2020-11-09 18:09 - 000029790 _____ C:\Users\matus\Downloads\FRST.txt
2020-11-09 18:07 - 2020-11-09 18:08 - 000000000 ____D C:\FRST
2020-11-09 17:48 - 2020-11-09 17:48 - 000001227 _____ C:\Users\matus\Desktop\Ondřej's My Cloud Home.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002076 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2020-11-09 17:40 - 2020-11-09 17:41 - 002298368 _____ (Farbar) C:\Users\matus\Downloads\FRST64.exe
2020-11-09 17:23 - 2020-11-09 17:24 - 030460656 _____ (Piriform Software Ltd) C:\Users\matus\Downloads\ccsetup574.exe
2020-11-09 17:13 - 2020-11-09 17:13 - 000059312 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswVpnRdr.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000053904 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2020-11-09 17:13 - 2020-11-09 17:13 - 000002149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-11-09 17:13 - 000002137 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-09-04 15:03 - 000075368 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AvastAntiTrackPremium
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\677ae575af6a7e4acc48b411cb96dbac
2020-11-09 16:44 - 2020-10-18 10:50 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-11-09 16:34 - 2020-11-09 16:35 - 271423123 _____ C:\Users\matus\Downloads\Jak je důležité míti Filipa (TV film) - Komedie (Československo, 1979).mp4
2020-10-18 10:50 - 2020-10-18 10:50 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-18 10:50 - 2020-10-18 10:50 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-10-18 10:47 - 2020-10-18 10:50 - 000000000 ____D C:\Lednice valtice
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-09 18:05 - 2020-08-23 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-09 18:05 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-09 17:55 - 2017-08-13 16:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Users\matus\Documents\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Program Files\ShareX
2020-11-09 17:47 - 2019-07-15 10:38 - 000000000 ____D C:\Users\matus\AppData\Roaming\WD Discovery
2020-11-09 17:47 - 2019-07-15 10:37 - 000000000 ____D C:\Users\matus\.wdc
2020-11-09 17:46 - 2020-08-23 15:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-09 17:46 - 2020-08-23 15:22 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-09 17:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-09 17:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-09 17:14 - 2020-09-14 10:40 - 000000000 ____D C:\ProgramData\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-11-09 17:13 - 2020-09-14 10:41 - 000000000 ____D C:\Program Files\Avast Software
2020-11-09 16:53 - 2020-08-23 15:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-09 16:53 - 2019-12-07 15:41 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-09 16:53 - 2019-12-07 15:41 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-09 16:46 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-09 16:46 - 2017-08-13 15:50 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-11-09 16:45 - 2020-09-14 10:46 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:46 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:45 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-11-09 16:45 - 2020-08-23 15:25 - 000000000 ____D C:\Users\matus
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-09 16:44 - 2020-09-14 10:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-09 16:44 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-09 16:40 - 2020-09-29 11:20 - 000001604 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2020-11-09 16:40 - 2020-09-29 11:20 - 000001602 _____ C:\Users\matus\Desktop\Zoner Photo Studio X.lnk
2020-11-09 16:39 - 2017-08-13 16:32 - 000000000 ____D C:\ProgramData\Zoner
2020-11-09 16:38 - 2020-08-23 15:38 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-09 16:38 - 2020-08-23 15:38 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-09 16:36 - 2020-08-23 15:38 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-618738485-2318971794-796116561-1001
2020-11-09 16:36 - 2020-08-23 15:25 - 000002406 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 16:36 - 2017-08-13 15:48 - 000000000 ___RD C:\Users\matus\OneDrive
2020-11-09 16:32 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-18 10:50 - 2020-09-14 10:42 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-18 10:49 - 2020-08-23 15:38 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-18 10:49 - 2020-08-23 15:38 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories ========
2017-08-13 16:19 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\howto
2018-07-26 16:10 - 2019-05-12 10:29 - 000099384 _____ () C:\Users\matus\AppData\Roaming\inst.exe
2018-07-26 16:10 - 2019-05-12 10:29 - 000007859 _____ () C:\Users\matus\AppData\Roaming\pcouffin.cat
2018-07-26 16:10 - 2019-05-12 10:29 - 000001167 _____ () C:\Users\matus\AppData\Roaming\pcouffin.inf
2018-07-26 16:11 - 2019-05-12 10:29 - 000000055 _____ () C:\Users\matus\AppData\Roaming\pcouffin.log
2018-07-26 16:10 - 2019-05-12 10:29 - 000082816 _____ (VSO Software) C:\Users\matus\AppData\Roaming\pcouffin.sys
2020-08-23 17:28 - 2020-08-23 17:28 - 000000268 ___RH () C:\Users\matus\AppData\Roaming\User Pictures
2017-08-13 16:20 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\Widgets
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-11-2020
Ran by matus (09-11-2020 18:12:03)
Running from C:\Users\matus\Downloads
Windows 10 Home Version 2004 19041.508 (X64) (2020-08-23 14:38:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-618738485-2318971794-796116561-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-618738485-2318971794-796116561-503 - Limited - Disabled)
Guest (S-1-5-21-618738485-2318971794-796116561-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-618738485-2318971794-796116561-1003 - Limited - Enabled)
matus (S-1-5-21-618738485-2318971794-796116561-1001 - Administrator - Enabled) => C:\Users\matus
WDAGUtilityAccount (S-1-5-21-618738485-2318971794-796116561-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Ashampoo Video Converter (HKLM-x32\...\{91B33C97-EF1B-802C-7798-B0E0F58D0614}_is1) (Version: 1.0.2 - Ashampoo GmbH & Co. KG)
Ashampoo Video Optimizer Pro (HKLM\...\{0A11EA01-76FF-098D-1F55-38D65501534C}_is1) (Version: 1.0.4 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 17 (HKLM-x32\...\{4209F371-A288-7880-7A7F-D105477C7D11}_is1) (Version: 17.00.24 - Ashampoo GmbH & Co. KG)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 86.0.6531.112 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.7.5118.836 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
AvastAntiTrackPremium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 1.7.0.115 - Avast)
AVer MediaCenter 3D (HKLM-x32\...\{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.) Hidden
AVer MediaCenter 3D (HKLM-x32\...\InstallShield_{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.)
AVerMedia A827 USB TV Tuner 2.1.64.159 (HKLM-x32\...\AVerMedia A827 USB TV Tuner) (Version: 2.1.64.159 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia C039 USB Capture Card 10.2.64.103 (HKLM-x32\...\AVerMedia C039 USB Capture Card) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia Engine (HKLM-x32\...\{b7cfb71d-8a81-4ac3-bdcd-16df998e853b}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc)
AVerMedia H837 USB Hybrid ATSC/QAM 10.2.64.103 (HKLM-x32\...\AVerMedia H837 USB Hybrid ATSC/QAM) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia StreamEngine 2 Installer (HKLM-x32\...\{3C6C18D9-2977-4845-803E-E31B3B7964FC}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.)
Camera Control Pro 2 (HKLM\...\{C00C5AEF-85D0-4418-B1B1-EC6DDE1E2EB8}) (Version: 2.32.0 - Nikon Corporation)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.10.4.24 - Canon Inc.)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2023 - CyberLink Corp.) Hidden
CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.1927.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DFX (HKLM-x32\...\DFX) (Version: 12.011.0.0 - Power Technology)
Driver Install 64bit (HKLM-x32\...\{1AF7F543-C862-4FD7-A6C1-FB527D2A2D91}) (Version: 1.32.1146.0 - 6?Shenzhen Geniatech Inc.,Ltd)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DxO FilmPack 3 (HKLM\...\{6E98BFB0-55E3-4D3C-8C10-B44F6063535E}) (Version: 3.4.96.0 - DxO Labs)
DxO PhotoLab 2 (HKLM\...\{DE14CE7D-2B71-41E0-8BE1-621DD49971FC}) (Version: 2.1.0 - DxO)
DxO PhotoLab 3 (HKLM\...\{7BBE0C3F-A19E-4D85-825B-88E5504623E5}) (Version: 3.3.0 - DxO)
EyeTV Netstream for Windows Media Center (HKLM-x32\...\EyeTV Netstream Service) (Version: 1.01.00.16 - Elgato Systems GmbH)
Formix SE - formuláře kanceláře (HKLM-x32\...\Formix SE_is1) (Version: - Martin Roubec)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HD Video Converter Factory Pro 18.1 (HKLM-x32\...\HD Video Converter Factory Pro) (Version: 18.1 - WonderFox Soft, Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
KaM Remake Full r6720 (HKLM-x32\...\{FDE049C8-E4B2-4EB5-A534-CF5C581F5D32}_is1) (Version: - )
K-Lite Mega Codec Pack 14.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.4.0 - KLCP)
Kodek 0.16 CZ (HKLM-x32\...\{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1) (Version: 0.16 - Pinky.cz)
Kuki (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Kuki) (Version: 20160616.000 - SMART Comp. a.s.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.13328.20292 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.38 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Movavi Video Converter 18 Premium verze Verzia 18 (HKLM-x32\...\{F20A5760-7FCB-4C99-8FA9-7594EA6EC500}_is1) (Version: Verzia 18 - My Company, Inc.)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Network Print Monitor for Windows (HKLM-x32\...\Network Print Monitor) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20292 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Ogg Vorbis ACM Codec (HKLM-x32\...\VorbisCodec) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC Štítky 2.xx (HKLM-x32\...\PC Štítky 2.xx_is1) (Version: - LAN Consult, spol. s r.o.)
Photo Story 3 pro Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.10 - Microsoft Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - Photodex Corporation)
ProShow Plugins for Lightroom (HKLM-x32\...\ProShow Plugins for Lightroom) (Version: - )
Puzznic 1.5 (HKLM-x32\...\Puzznic_is1) (Version: - ZX Games)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7730 - Realtek Semiconductor Corp.)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
SharePort Plus (HKLM\...\SharePort Plus) (Version: 4.5.0 R1 - D-Link Corporation)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.3.0 - ShareX Team)
Spectaculator 5.3 (HKLM-x32\...\{C8C61BA0-F07E-4240-B5B0-669988B3A51A}) (Version: 5.30.371 - spectaculator.com)
Spectaculator 8.0 (HKLM-x32\...\{B21AE9DA-E837-4F82-B061-7848B4F3096B}) (Version: 8.0.0.3092 - spectaculator.com)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
the Free Unix Spectrum Emulator (Fuse) 1.5.7 (HKLM-x32\...\Fuse) (Version: 1.5.7 - )
TMPGEnc Authoring Works 5 (HKLM-x32\...\{3B2A7C83-EFAE-4FC1-BF6B-500042E8B17A}) (Version: 5.0.8.26 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Premium Theme Pack 1 (HKLM-x32\...\{5D314FE3-3D51-4C46-9514-8B0A28F7AF77}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 1 (HKLM-x32\...\{929EAD99-9874-43BF-B3F4-5F5D2D9D66A9}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 2 (HKLM-x32\...\{5ECF915E-710A-441E-A7CB-1E599A61D34F}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 3 (HKLM-x32\...\{504C5775-4DD4-40A6-84EA-2837EBC5D268}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 4 (HKLM-x32\...\{081872FE-8932-42E9-B3CE-CE85C477790E}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Video Mastering Works 7 (HKLM\...\{39AF3318-F7FC-41E3-837E-51BF19AE5A77}) (Version: 7.0.16.18 - Pegasys Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
TotalTV Player (HKLM-x32\...\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}) (Version: 6.32.4 - )
UnHackMe GE 10.85 release (HKLM-x32\...\UnHackMe Giveaway Edition_is1) (Version: - Greatis Software, LLC.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.59 - VSO Software)
VSO DVD Converter Ultimate 4 (HKLM-x32\...\{{089D6334-329D-46DC-8DC3-6BF4C9735F0F}_is1) (Version: 4.0.0.92 - VSO Software)
WD Backup (HKLM-x32\...\{48af7dc3-edf5-448d-a533-e3f050b404b5}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc.)
WD Backup (HKLM-x32\...\{4EB2034E-AC6F-4A03-9448-C97E634A6E34}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc) Hidden
WD Desktop App 2.1.0.299 (HKLM-x32\...\{f79d30ca-d71c-4aaa-b9b0-b26833cdac51}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.299 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 3.7.214 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{693748a9-bddc-4f6f-b3ff-f9bd14a3fcc0}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{ED1E371E-F744-437B-95AD-9552E2BCE629}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.) Hidden
WD Security (HKLM-x32\...\{3add5d6a-ee06-4eba-aea0-cbd8eb1486d4}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{5E3EE4AF-4D3A-4A65-9E04-8F50E9A3AC76}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.) Hidden
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
Win10PrivacyFix (HKLM-x32\...\{EFF218A1-EBF1-4EE2-8BAE-86D0E04B4F0F}_is1) (Version: 2.6 - Abelssoft)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinUAE 64-bit 4.0.0 (HKLM\...\{3F3C6C30-B791-4DD5-ABEF-48F424366039}) (Version: 4.0.0.0 - Arabuusimiehet)
Wise Registry Cleaner 10.1.6 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.1.6 - WiseCleaner.com, Inc.)
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.2 - ZONER software)
Zoner Photo Studio X CS (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\ZPS X) (Version: 19.2009.2.279 - ZONER software)
Packages:
=========
Age of Empires: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSDallas_1.3.27374.2_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.178.200.0_x86__kgqvnymyfvs32 [2020-10-08] (king.com)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.23.1.0_x86__q7m17pa7q8kj0 [2020-09-29] (Deezer SA)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-23] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.4002.0_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-618738485-2318971794-796116561-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers1: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\system32\prodad-codec.dll [607256 2017-08-02] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [vidc.divx] => C:\Windows\SysWOW64\divx.dll [680960 2003-11-11] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.div4] => C:\Windows\SysWOW64\DivXc32f.dll [121920 2003-04-22] (Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.div3] => C:\Windows\SysWOW64\DivXc32.dll [121920 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvid.dll [202752 2003-07-16] () [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2003-07-29] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.divxa] => C:\Windows\SysWOW64\divxa32.acm [290896 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\Vorbis.acm [209408 2001-06-22] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [msacm.a3d] => C:\Windows\SysWOW64\a3d.dll [720896 2002-08-27] (Sensaura Ltd) [File not signed]
HKLM\...\Drivers32: [msacm.ogg] => C:\Windows\SysWOW64\ogg.dll [21504 2002-10-05] () [File not signed]
HKLM\...\Drivers32: [msacm.vorbisenc] => C:\Windows\SysWOW64\vorbisenc.dll [80384 2002-10-05] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-12-17 18:41 - 2018-12-17 18:41 - 000306688 _____ () [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceInfoParser.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000032768 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.NetFwTypeLib.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000014848 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.UPNPLib.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2019-05-08 00:06 - 2019-05-08 00:06 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2018-12-17 18:41 - 2018-12-17 18:41 - 000211456 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\AVerCaptureCardID.dll
2018-11-23 13:49 - 2018-11-23 13:49 - 002114048 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceMaster.dll
2019-04-24 15:19 - 2015-12-14 15:39 - 000194560 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\CardID.dll
2019-04-24 15:19 - 2015-02-09 12:32 - 000770048 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\GraphMaster.dll
2019-07-15 10:38 - 2017-11-10 11:51 - 000118272 _____ (Western Digital Technologies, Inc.) [File not signed] C:\WINDOWS\system32\wdfsconnectNetRdr2017.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:CD30FA91 [360]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-618738485-2318971794-796116561-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 22:03 - 2020-11-09 16:36 - 000029154 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0x1f4b0.com
0.0.0.0 1q2w3.fun
0.0.0.0 1q2w3.life
0.0.0.0 1q2w3.website
0.0.0.0 2giga.dowload
0.0.0.0 2giga.link
0.0.0.0 8jd2lfsq.me
0.0.0.0 aalbbh84.info
0.0.0.0 acbp0020171456.page.tl
0.0.0.0 adless.io
0.0.0.0 ad-miner.com
0.0.0.0 adplusplus.fr
0.0.0.0 adrenali.gq
0.0.0.0 afflow.18-plus.net
0.0.0.0 afminer.com
0.0.0.0 ajcryptominer.com
0.0.0.0 ajplugins.com
0.0.0.0 akvideo.stream
0.0.0.0 allfontshere.press
0.0.0.0 altavista.ovh
0.0.0.0 amhixwqagiz.ru
0.0.0.0 analytics.blue
0.0.0.0 andlache.com
0.0.0.0 anime.reactor.cc
0.0.0.0 a-o.ninja
0.0.0.0 apdrive.win
0.0.0.0 api.inwemo.com
0.0.0.0 appelamule.com
0.0.0.0 arizona-miner.tk
There are 1142 more lines.
2017-09-06 18:49 - 2018-12-18 16:26 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-618738485-2318971794-796116561-1001\Control Panel\Desktop\\Wallpaper -> C:\P1000105.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{66386608-4583-415B-BE9B-2E3ED3C66393}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [UDP Query User{CD292CAC-6A20-4707-A1A6-7F40BBCBADFA}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [TCP Query User{9D0C9E9D-CD2A-4E28-A7EC-B10A7C51B32C}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [{AF41BABC-EB80-412E-9FF8-CD0ACFAD2276}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{B8D6DDE3-2B3A-4FA3-B8C4-5A52517A3BC8}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{74D8855E-CEC9-41AF-B10A-B432914E0066}] => (Allow) C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe (D-LINK CORPORATION -> D-Link Corp.)
FirewallRules: [TCP Query User{5CB81A67-5F66-4C27-A450-2A91C6881614}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [UDP Query User{3148B70F-8759-48BE-AF44-6D5CC79F934A}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [TCP Query User{D5CD366E-F688-4E82-B179-B0530BC21377}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [UDP Query User{EBDC1CCF-B409-4C2C-8A18-002EC0E7902B}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [{88AE1167-35CF-4A3C-B1A4-C809BEB2BE59}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00B7F292-9D74-46DC-AF0F-8C10C85A8925}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0550766C-8990-4F90-A228-C397A2B7EA83}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{1793B47C-65BE-4CC3-AED5-309D3104443E}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{6DAEF2CA-BEE8-477A-8D3A-140551442F50}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{7FD0398F-ED20-44FB-8A02-E2B88379831A}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{E155F248-A43A-42CE-937B-191572D3F090}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{4BB3EC4D-4963-4B2C-BE83-3513CE0DD584}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{7991E652-F01D-46F1-B3D0-AF0EE136AAC2}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [UDP Query User{E6A6F1CA-4FFA-4382-8416-1E98DCEAC80C}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{E98497D8-7CFA-4E7B-9BFD-4F040175494E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{286BE9AF-8B10-4369-96F6-655E54B571E4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777935}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA9}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777934}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA8}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{EB94C739-0A4D-459F-B4E9-16D4F0912782}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{8DD177E0-0791-49CC-81F8-414830CD3357}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9E8BD6B0-C150-49D4-8BFC-77B37038E5D7}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{2CC5F19F-5080-40A8-984E-F98E24BE11AA}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{4BADA533-C125-49C4-B0DC-54533D9610B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9029AF1F-5CD0-4D62-AA38-D3B5E433333B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{18122F01-3107-46BB-9818-F08382BD2351}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{295723E0-49CF-43E4-A046-A82DB69A5C0F}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AA9503E3-6E1D-49D6-9A02-20E0D7ADCF6D}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD0395D6-03AE-4536-9B37-530CE0FA165A}] => (Allow) %SystemRoot%\ehome\ehrecvr.exe => No File
==================== Restore Points =========================
09-11-2020 16:31:35 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/09/2020 04:35:45 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/09/2020 04:31:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/18/2020 10:48:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/08/2020 01:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/08/2020 09:15:50 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (09/30/2020 01:33:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/30/2020 01:25:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: 0456211f-9b01-4090-b0ed-b5fad82a1de2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2020 01:25:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: d7252185-37cc-422c-ba04-c72a31c4ce9a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (11/09/2020 06:10:38 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 06:05:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.
Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v offline režimu.
Error: (11/09/2020 06:00:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 05:55:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 05:55:07 PM) (Source: BROWSER) (EventID: 8009) (User: )
Description: Prohledávač se nemůže povýšit na hlavní prohledávač. Za hlavní prohledávač
se aktuálně považuje počítač MYCLOUD-ZD4XRV.
Error: (11/09/2020 05:49:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
CodeIntegrity:
===================================
Date: 2020-11-09 18:02:01.9650000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:59.5170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:59.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.9030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.7180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.4670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:53.5070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:53.2290000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F.19 05/27/2016
Motherboard: HP 80B8
Processor: AMD A8-7410 APU with AMD Radeon R5 Graphics
Percentage of memory in use: 82%
Total physical RAM: 3518.88 MB
Available physical RAM: 612.48 MB
Total Virtual: 5246.88 MB
Available Virtual: 1009.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.06 GB) (Free:11.24 GB) NTFS
\\?\Volume{b43d61db-c560-4a32-aca9-d31640847cfc}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{6d0efb9f-1fbc-45ac-8164-b24bf57fa9a5}\ () (Fixed) (Total:0.86 GB) (Free:0.34 GB) NTFS
\\?\Volume{6b087b33-927b-45cb-9213-bee70815187d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{8c374aef-a6e2-11e9-a577-e09467f6a030}\ () (Removable) (Total:1790.64 GB) (Free:681.37 GB) KDDFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by matus (administrator) on DESKTOP-QCNA7PB (HP HP Pavilion Notebook) (09-11-2020 18:08:07)
Running from C:\Users\matus\Downloads
Loaded Profiles: matus
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
() [File not signed] C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(AVerMedia TECHNOLOGIES, Inc -> ) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(AVerMedia TECHNOLOGIES, Inc -> AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe
(AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Elgato Systems -> Elgato Systems GmbH) C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\matus\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Power Technology -> ) [File not signed] C:\Program Files (x86)\DFX\DFX.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
(Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe <3>
(Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync-inotify.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET Security\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1325240 2018-11-20] (Power Technology -> ) [File not signed]
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376504 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [24720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [223096 2012-04-17] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2311840 2020-03-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [BDFE749FBD481E3AA828287100E5863D96D31C94._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [752736 2012-10-08] (ZONER software, a.s. -> ZONER software)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\Installer\chrmstp.exe [2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2020-11-09]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2019-04-27]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe (AVerMedia TECHNOLOGIES, Inc -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2019-04-27]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration THE SETTLERS - Heritage of Kings.LNK [2019-11-08]
ShortcutTarget: Registration THE SETTLERS - Heritage of Kings.LNK -> D:\Support\Register\RegistrationReminder.exe (No File)
Startup: C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2018-07-07]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {043EC152-057C-41EA-AC3D-CC68A32EAB7E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {26C902A8-54AC-49D8-BA98-43F84C0C7B28} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2C612CDB-093E-483F-BDA3-F303DDB00390} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D72E9B4-2067-416E-9C20-AE7C8B36A708} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5251680 2020-09-04] (Avast Software s.r.o. -> Avast Software)
Task: {33E53BDC-E52F-48D2-B9C1-6B56466053C1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2117880 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
Task: {41DA5234-338C-4317-80DE-CE806381A426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {57A13B4C-ADF3-45B3-B871-37DED4DD25D2} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {5E231D9E-2E69-4DFC-8B2C-D691F6643B4B} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [1174936 2019-07-30] (Greatis Software LLC -> Greatis Software)
Task: {634C520A-AAC7-4723-9AA0-570522160B23} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {69355DF0-512F-4D85-AF2A-170C3B891E5E} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [5524040 2019-03-08] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {6B385918-808A-4134-B76B-772CB00432B0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D6A7D55-E421-4652-925C-BF832FB65AB9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {70017988-FBA3-4AF1-A45B-A86EBE108EB8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4496488 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
Task: {89A994EB-F369-489F-AB1B-35E07019F0B3} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [3551704 2020-11-09] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid f2dc0f90-4b55-46ce-ad2c-a0e0717dbe08
Task: {8E0463AB-6520-4706-801B-8D230C4FE109} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1146776 2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DD69C06-47E4-4612-8CA1-DF3FB6A17C2A} - System32\Tasks\ASC12_SkipUac_matus => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {B80E7929-DC58-4B00-8337-F3797051FFA2} - System32\Tasks\WD Device Agent Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720632 2020-03-29] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {C5867709-05FE-439A-801E-1E4F80419A9B} - System32\Tasks\WD Discovery Service Task matus => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75512 2020-03-29] (Western Digital Technologies, Inc. -> )
Task: {D2EFBC94-C2C3-432E-98D8-27F52A22B7C2} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1180488 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
Task: {D433A34A-13B3-4743-A9E7-A946113327CB} - System32\Tasks\Zoner.Updater.S-1-5-21-618738485-2318971794-796116561-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [2693712 2020-11-09] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {F062C002-C0DF-47E8-8666-622BAB897FFA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6F22C70-8C0D-4F2A-861C-DA299649F4F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {FF946805-AF91-4307-8A05-08C520CD4C44} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0a108eec-fd3e-4a94-8677-90324982d730}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1193c1da-f4e5-4664-a9a4-23db8fe0718a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3e1f071f-7bfe-4622-b640-ebeae25eee8c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{93d62c76-7eed-4d4c-bfe4-f830274b5da6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{ef08dffa-d039-4b3f-b6c2-b19329588074}: [NameServer] 100.124.96.1
Edge:
======
DownloadDir: C:\Users\matus\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\matus\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default [2020-11-09]
CHR Notifications: Default -> hxxps://apkpure.ai; hxxps://en.softonic.com; hxxps://eu1.badoo.com; hxxps://gadgets.ndtv.com; hxxps://www.facebook.com; hxxps://www.svetandroida.cz
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR Extension: (Seznam doplněk - Email) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\matus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-04-14]
CHR Profile: C:\Users\matus\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-14]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-618738485-2318971794-796116561-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8450976 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [360408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1187512 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2748520 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.0.6531.112\elevation_service.exe [1348304 2020-10-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [377664 2015-06-25] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia)
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [771072 2017-02-06] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 D-Link SharePort Plus Helper; C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe [49152 2011-03-25] () [File not signed]
R2 EyeTV Netstream; C:\Program Files (x86)\Elgato\EyeTV Netstream\EyeTVNetstreamSvc.exe [400864 2013-04-15] (Elgato Systems -> Elgato Systems GmbH)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [7509152 2020-11-09] (Avast Software s.r.o. -> AVAST Software)
R2 StreamEngineService; C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\StreamEngineService.exe [1953712 2020-02-27] (AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [367232 2019-06-26] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-11-09] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-18] (Avast Software s.r.o. -> AVAST Software)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59312 2020-11-09] (Avast Software s.r.o. -> Avast Software)
S3 AVerFx2hbtv64; C:\WINDOWS\system32\drivers\AVerFx2hbtv64.sys [691968 2012-09-19] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [871048 2016-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET, spol. s r.o. -> ESET)
S4 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [40304 2019-09-04] (Greatis Software LLC -> Greatis Software)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [82816 2018-07-26] (VSO Software) [File not signed]
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2013-08-14] (Corel Corporation -> Corel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R2 sxuptp; C:\WINDOWS\System32\drivers\sxuptp.sys [317792 2015-09-03] (D-LINK CORPORATION -> silex technology, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U1 aswbdisk; no ImagePath
U1 netfilter2; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-09 18:08 - 2020-11-09 18:09 - 000029790 _____ C:\Users\matus\Downloads\FRST.txt
2020-11-09 18:07 - 2020-11-09 18:08 - 000000000 ____D C:\FRST
2020-11-09 17:48 - 2020-11-09 17:48 - 000001227 _____ C:\Users\matus\Desktop\Ondřej's My Cloud Home.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-11-09 17:46 - 2020-11-09 17:46 - 000002076 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2020-11-09 17:40 - 2020-11-09 17:41 - 002298368 _____ (Farbar) C:\Users\matus\Downloads\FRST64.exe
2020-11-09 17:23 - 2020-11-09 17:24 - 030460656 _____ (Piriform Software Ltd) C:\Users\matus\Downloads\ccsetup574.exe
2020-11-09 17:13 - 2020-11-09 17:13 - 000059312 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswVpnRdr.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000053904 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys
2020-11-09 17:13 - 2020-11-09 17:13 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2020-11-09 17:13 - 2020-11-09 17:13 - 000002149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-11-09 17:13 - 000002137 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2020-11-09 17:13 - 2020-09-04 15:03 - 000075368 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AvastAntiTrackPremium
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2020-11-09 16:45 - 2020-11-09 16:45 - 000000000 ____D C:\677ae575af6a7e4acc48b411cb96dbac
2020-11-09 16:44 - 2020-10-18 10:50 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-11-09 16:34 - 2020-11-09 16:35 - 271423123 _____ C:\Users\matus\Downloads\Jak je důležité míti Filipa (TV film) - Komedie (Československo, 1979).mp4
2020-10-18 10:50 - 2020-10-18 10:50 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-18 10:50 - 2020-10-18 10:50 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-10-18 10:47 - 2020-10-18 10:50 - 000000000 ____D C:\Lednice valtice
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-09 18:05 - 2020-08-23 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-09 18:05 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-09 17:55 - 2017-08-13 16:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Users\matus\Documents\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-11-09 17:48 - 2018-01-20 15:53 - 000000000 ____D C:\Program Files\ShareX
2020-11-09 17:47 - 2019-07-15 10:38 - 000000000 ____D C:\Users\matus\AppData\Roaming\WD Discovery
2020-11-09 17:47 - 2019-07-15 10:37 - 000000000 ____D C:\Users\matus\.wdc
2020-11-09 17:46 - 2020-08-23 15:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-09 17:46 - 2020-08-23 15:22 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-09 17:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-09 17:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-09 17:14 - 2020-09-14 10:40 - 000000000 ____D C:\ProgramData\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-11-09 17:13 - 2020-09-14 10:42 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-11-09 17:13 - 2020-09-14 10:41 - 000000000 ____D C:\Program Files\Avast Software
2020-11-09 16:53 - 2020-08-23 15:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-09 16:53 - 2019-12-07 15:41 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-09 16:53 - 2019-12-07 15:41 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-09 16:46 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-09 16:46 - 2017-08-13 15:50 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-11-09 16:45 - 2020-09-14 10:46 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:46 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-11-09 16:45 - 2020-09-14 10:45 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-11-09 16:45 - 2020-08-23 15:25 - 000000000 ____D C:\Users\matus
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-09 16:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-09 16:44 - 2020-09-14 10:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-09 16:44 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-09 16:40 - 2020-09-29 11:20 - 000001604 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2020-11-09 16:40 - 2020-09-29 11:20 - 000001602 _____ C:\Users\matus\Desktop\Zoner Photo Studio X.lnk
2020-11-09 16:39 - 2017-08-13 16:32 - 000000000 ____D C:\ProgramData\Zoner
2020-11-09 16:38 - 2020-08-23 15:38 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-09 16:38 - 2020-08-23 15:38 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-09 16:36 - 2020-08-23 15:38 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-618738485-2318971794-796116561-1001
2020-11-09 16:36 - 2020-08-23 15:25 - 000002406 _____ C:\Users\matus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 16:36 - 2017-08-13 15:48 - 000000000 ___RD C:\Users\matus\OneDrive
2020-11-09 16:32 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-18 10:50 - 2020-09-14 10:42 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-18 10:50 - 2020-09-14 10:42 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-18 10:49 - 2020-08-23 15:38 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-18 10:49 - 2020-08-23 15:38 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories ========
2017-08-13 16:19 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\howto
2018-07-26 16:10 - 2019-05-12 10:29 - 000099384 _____ () C:\Users\matus\AppData\Roaming\inst.exe
2018-07-26 16:10 - 2019-05-12 10:29 - 000007859 _____ () C:\Users\matus\AppData\Roaming\pcouffin.cat
2018-07-26 16:10 - 2019-05-12 10:29 - 000001167 _____ () C:\Users\matus\AppData\Roaming\pcouffin.inf
2018-07-26 16:11 - 2019-05-12 10:29 - 000000055 _____ () C:\Users\matus\AppData\Roaming\pcouffin.log
2018-07-26 16:10 - 2019-05-12 10:29 - 000082816 _____ (VSO Software) C:\Users\matus\AppData\Roaming\pcouffin.sys
2020-08-23 17:28 - 2020-08-23 17:28 - 000000268 ___RH () C:\Users\matus\AppData\Roaming\User Pictures
2017-08-13 16:20 - 2020-04-01 09:27 - 000000000 _____ () C:\Users\matus\AppData\Roaming\Widgets
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-11-2020
Ran by matus (09-11-2020 18:12:03)
Running from C:\Users\matus\Downloads
Windows 10 Home Version 2004 19041.508 (X64) (2020-08-23 14:38:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-618738485-2318971794-796116561-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-618738485-2318971794-796116561-503 - Limited - Disabled)
Guest (S-1-5-21-618738485-2318971794-796116561-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-618738485-2318971794-796116561-1003 - Limited - Enabled)
matus (S-1-5-21-618738485-2318971794-796116561-1001 - Administrator - Enabled) => C:\Users\matus
WDAGUtilityAccount (S-1-5-21-618738485-2318971794-796116561-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Ashampoo Video Converter (HKLM-x32\...\{91B33C97-EF1B-802C-7798-B0E0F58D0614}_is1) (Version: 1.0.2 - Ashampoo GmbH & Co. KG)
Ashampoo Video Optimizer Pro (HKLM\...\{0A11EA01-76FF-098D-1F55-38D65501534C}_is1) (Version: 1.0.4 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 17 (HKLM-x32\...\{4209F371-A288-7880-7A7F-D105477C7D11}_is1) (Version: 17.00.24 - Ashampoo GmbH & Co. KG)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 86.0.6531.112 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.7.5118.836 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
AvastAntiTrackPremium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 1.7.0.115 - Avast)
AVer MediaCenter 3D (HKLM-x32\...\{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.) Hidden
AVer MediaCenter 3D (HKLM-x32\...\InstallShield_{D2912CB2-F95A-406C-AA88-2BB5DCB6D275}) (Version: 1.7.9.91.15030401 - AVerMedia Technologies, Inc.)
AVerMedia A827 USB TV Tuner 2.1.64.159 (HKLM-x32\...\AVerMedia A827 USB TV Tuner) (Version: 2.1.64.159 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia C039 USB Capture Card 10.2.64.103 (HKLM-x32\...\AVerMedia C039 USB Capture Card) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia Engine (HKLM-x32\...\{b7cfb71d-8a81-4ac3-bdcd-16df998e853b}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc)
AVerMedia H837 USB Hybrid ATSC/QAM 10.2.64.103 (HKLM-x32\...\AVerMedia H837 USB Hybrid ATSC/QAM) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia StreamEngine 2 Installer (HKLM-x32\...\{3C6C18D9-2977-4845-803E-E31B3B7964FC}) (Version: 2.0.0.46 - AVerMedia TECHNOLOGIES, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.14 - AVerMedia Technologies, Inc.)
Camera Control Pro 2 (HKLM\...\{C00C5AEF-85D0-4418-B1B1-EC6DDE1E2EB8}) (Version: 2.32.0 - Nikon Corporation)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.10.4.24 - Canon Inc.)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2023 - CyberLink Corp.) Hidden
CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.1927.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DFX (HKLM-x32\...\DFX) (Version: 12.011.0.0 - Power Technology)
Driver Install 64bit (HKLM-x32\...\{1AF7F543-C862-4FD7-A6C1-FB527D2A2D91}) (Version: 1.32.1146.0 - 6?Shenzhen Geniatech Inc.,Ltd)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DxO FilmPack 3 (HKLM\...\{6E98BFB0-55E3-4D3C-8C10-B44F6063535E}) (Version: 3.4.96.0 - DxO Labs)
DxO PhotoLab 2 (HKLM\...\{DE14CE7D-2B71-41E0-8BE1-621DD49971FC}) (Version: 2.1.0 - DxO)
DxO PhotoLab 3 (HKLM\...\{7BBE0C3F-A19E-4D85-825B-88E5504623E5}) (Version: 3.3.0 - DxO)
EyeTV Netstream for Windows Media Center (HKLM-x32\...\EyeTV Netstream Service) (Version: 1.01.00.16 - Elgato Systems GmbH)
Formix SE - formuláře kanceláře (HKLM-x32\...\Formix SE_is1) (Version: - Martin Roubec)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HD Video Converter Factory Pro 18.1 (HKLM-x32\...\HD Video Converter Factory Pro) (Version: 18.1 - WonderFox Soft, Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
KaM Remake Full r6720 (HKLM-x32\...\{FDE049C8-E4B2-4EB5-A534-CF5C581F5D32}_is1) (Version: - )
K-Lite Mega Codec Pack 14.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.4.0 - KLCP)
Kodek 0.16 CZ (HKLM-x32\...\{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1) (Version: 0.16 - Pinky.cz)
Kuki (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\Kuki) (Version: 20160616.000 - SMART Comp. a.s.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.13328.20292 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.38 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Movavi Video Converter 18 Premium verze Verzia 18 (HKLM-x32\...\{F20A5760-7FCB-4C99-8FA9-7594EA6EC500}_is1) (Version: Verzia 18 - My Company, Inc.)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Network Print Monitor for Windows (HKLM-x32\...\Network Print Monitor) (Version: - )
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20292 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13328.20278 - Microsoft Corporation) Hidden
Ogg Vorbis ACM Codec (HKLM-x32\...\VorbisCodec) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC Štítky 2.xx (HKLM-x32\...\PC Štítky 2.xx_is1) (Version: - LAN Consult, spol. s r.o.)
Photo Story 3 pro Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.10 - Microsoft Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - Photodex Corporation)
ProShow Plugins for Lightroom (HKLM-x32\...\ProShow Plugins for Lightroom) (Version: - )
Puzznic 1.5 (HKLM-x32\...\Puzznic_is1) (Version: - ZX Games)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7730 - Realtek Semiconductor Corp.)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
SharePort Plus (HKLM\...\SharePort Plus) (Version: 4.5.0 R1 - D-Link Corporation)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.3.0 - ShareX Team)
Spectaculator 5.3 (HKLM-x32\...\{C8C61BA0-F07E-4240-B5B0-669988B3A51A}) (Version: 5.30.371 - spectaculator.com)
Spectaculator 8.0 (HKLM-x32\...\{B21AE9DA-E837-4F82-B061-7848B4F3096B}) (Version: 8.0.0.3092 - spectaculator.com)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
the Free Unix Spectrum Emulator (Fuse) 1.5.7 (HKLM-x32\...\Fuse) (Version: 1.5.7 - )
TMPGEnc Authoring Works 5 (HKLM-x32\...\{3B2A7C83-EFAE-4FC1-BF6B-500042E8B17A}) (Version: 5.0.8.26 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Premium Theme Pack 1 (HKLM-x32\...\{5D314FE3-3D51-4C46-9514-8B0A28F7AF77}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 1 (HKLM-x32\...\{929EAD99-9874-43BF-B3F4-5F5D2D9D66A9}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 2 (HKLM-x32\...\{5ECF915E-710A-441E-A7CB-1E599A61D34F}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 3 (HKLM-x32\...\{504C5775-4DD4-40A6-84EA-2837EBC5D268}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Authoring Works 5 Theme Pack 4 (HKLM-x32\...\{081872FE-8932-42E9-B3CE-CE85C477790E}) (Version: 1.0.0.0 - Pegasys Inc.)
TMPGEnc Video Mastering Works 7 (HKLM\...\{39AF3318-F7FC-41E3-837E-51BF19AE5A77}) (Version: 7.0.16.18 - Pegasys Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
TotalTV Player (HKLM-x32\...\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}) (Version: 6.32.4 - )
UnHackMe GE 10.85 release (HKLM-x32\...\UnHackMe Giveaway Edition_is1) (Version: - Greatis Software, LLC.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.59 - VSO Software)
VSO DVD Converter Ultimate 4 (HKLM-x32\...\{{089D6334-329D-46DC-8DC3-6BF4C9735F0F}_is1) (Version: 4.0.0.92 - VSO Software)
WD Backup (HKLM-x32\...\{48af7dc3-edf5-448d-a533-e3f050b404b5}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc.)
WD Backup (HKLM-x32\...\{4EB2034E-AC6F-4A03-9448-C97E634A6E34}) (Version: 1.9.7268.41119 - Western Digital Technologies, Inc) Hidden
WD Desktop App 2.1.0.299 (HKLM-x32\...\{f79d30ca-d71c-4aaa-b9b0-b26833cdac51}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.299 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 3.7.214 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{693748a9-bddc-4f6f-b3ff-f9bd14a3fcc0}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{ED1E371E-F744-437B-95AD-9552E2BCE629}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.) Hidden
WD Security (HKLM-x32\...\{3add5d6a-ee06-4eba-aea0-cbd8eb1486d4}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{5E3EE4AF-4D3A-4A65-9E04-8F50E9A3AC76}) (Version: 2.0.0.70 - Western Digital Technologies, Inc.) Hidden
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
Win10PrivacyFix (HKLM-x32\...\{EFF218A1-EBF1-4EE2-8BAE-86D0E04B4F0F}_is1) (Version: 2.6 - Abelssoft)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinUAE 64-bit 4.0.0 (HKLM\...\{3F3C6C30-B791-4DD5-ABEF-48F424366039}) (Version: 4.0.0.0 - Arabuusimiehet)
Wise Registry Cleaner 10.1.6 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.1.6 - WiseCleaner.com, Inc.)
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.2 - ZONER software)
Zoner Photo Studio X CS (HKU\S-1-5-21-618738485-2318971794-796116561-1001\...\ZPS X) (Version: 19.2009.2.279 - ZONER software)
Packages:
=========
Age of Empires: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSDallas_1.3.27374.2_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.178.200.0_x86__kgqvnymyfvs32 [2020-10-08] (king.com)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.23.1.0_x86__q7m17pa7q8kj0 [2020-09-29] (Deezer SA)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-23] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.4002.0_x64__8wekyb3d8bbwe [2020-09-09] (Microsoft Studios)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-618738485-2318971794-796116561-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {5DC8202D-8CE5-43E4-8995-AAA192DE5ACC} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers1: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-10-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\system32\prodad-codec.dll [607256 2017-08-02] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [vidc.divx] => C:\Windows\SysWOW64\divx.dll [680960 2003-11-11] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.div4] => C:\Windows\SysWOW64\DivXc32f.dll [121920 2003-04-22] (Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.div3] => C:\Windows\SysWOW64\DivXc32.dll [121920 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvid.dll [202752 2003-07-16] () [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2003-07-29] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.divxa] => C:\Windows\SysWOW64\divxa32.acm [290896 2003-04-21] (build Pinky.cz) [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\Vorbis.acm [209408 2001-06-22] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [msacm.a3d] => C:\Windows\SysWOW64\a3d.dll [720896 2002-08-27] (Sensaura Ltd) [File not signed]
HKLM\...\Drivers32: [msacm.ogg] => C:\Windows\SysWOW64\ogg.dll [21504 2002-10-05] () [File not signed]
HKLM\...\Drivers32: [msacm.vorbisenc] => C:\Windows\SysWOW64\vorbisenc.dll [80384 2002-10-05] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-12-17 18:41 - 2018-12-17 18:41 - 000306688 _____ () [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceInfoParser.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000032768 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.NetFwTypeLib.dll
2013-04-15 09:06 - 2013-04-15 09:06 - 000014848 _____ () [File not signed] C:\Program Files (x86)\Elgato\EyeTV Netstream\Interop.UPNPLib.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2020-03-29 11:36 - 2020-03-29 11:36 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2019-05-08 00:06 - 2019-05-08 00:06 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2018-12-17 18:41 - 2018-12-17 18:41 - 000211456 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\AVerCaptureCardID.dll
2018-11-23 13:49 - 2018-11-23 13:49 - 002114048 _____ (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerMedia Engine\x86\DeviceMaster.dll
2019-04-24 15:19 - 2015-12-14 15:39 - 000194560 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\CardID.dll
2019-04-24 15:19 - 2015-02-09 12:32 - 000770048 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\GraphMaster.dll
2019-07-15 10:38 - 2017-11-10 11:51 - 000118272 _____ (Western Digital Technologies, Inc.) [File not signed] C:\WINDOWS\system32\wdfsconnectNetRdr2017.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:CD30FA91 [360]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-618738485-2318971794-796116561-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-09] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 22:03 - 2020-11-09 16:36 - 000029154 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0x1f4b0.com
0.0.0.0 1q2w3.fun
0.0.0.0 1q2w3.life
0.0.0.0 1q2w3.website
0.0.0.0 2giga.dowload
0.0.0.0 2giga.link
0.0.0.0 8jd2lfsq.me
0.0.0.0 aalbbh84.info
0.0.0.0 acbp0020171456.page.tl
0.0.0.0 adless.io
0.0.0.0 ad-miner.com
0.0.0.0 adplusplus.fr
0.0.0.0 adrenali.gq
0.0.0.0 afflow.18-plus.net
0.0.0.0 afminer.com
0.0.0.0 ajcryptominer.com
0.0.0.0 ajplugins.com
0.0.0.0 akvideo.stream
0.0.0.0 allfontshere.press
0.0.0.0 altavista.ovh
0.0.0.0 amhixwqagiz.ru
0.0.0.0 analytics.blue
0.0.0.0 andlache.com
0.0.0.0 anime.reactor.cc
0.0.0.0 a-o.ninja
0.0.0.0 apdrive.win
0.0.0.0 api.inwemo.com
0.0.0.0 appelamule.com
0.0.0.0 arizona-miner.tk
There are 1142 more lines.
2017-09-06 18:49 - 2018-12-18 16:26 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-618738485-2318971794-796116561-1001\Control Panel\Desktop\\Wallpaper -> C:\P1000105.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{66386608-4583-415B-BE9B-2E3ED3C66393}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [UDP Query User{CD292CAC-6A20-4707-A1A6-7F40BBCBADFA}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [TCP Query User{9D0C9E9D-CD2A-4E28-A7EC-B10A7C51B32C}C:\dune 2000\dune2000.dat] => (Allow) C:\dune 2000\dune2000.dat => No File
FirewallRules: [{AF41BABC-EB80-412E-9FF8-CD0ACFAD2276}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{B8D6DDE3-2B3A-4FA3-B8C4-5A52517A3BC8}] => (Allow) C:\Program Files (x86)\Kuki\addons\skin.netboxkuki\proxies\proxy2.exe () [File not signed]
FirewallRules: [{74D8855E-CEC9-41AF-B10A-B432914E0066}] => (Allow) C:\Program Files\D-Link\SharePort Plus\SharePortPlus.exe (D-LINK CORPORATION -> D-Link Corp.)
FirewallRules: [TCP Query User{5CB81A67-5F66-4C27-A450-2A91C6881614}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [UDP Query User{3148B70F-8759-48BE-AF44-6D5CC79F934A}C:\program files (x86)\photodex\proshow gold\proshow.exe] => (Block) C:\program files (x86)\photodex\proshow gold\proshow.exe (Photodex Corporation -> Photodex)
FirewallRules: [TCP Query User{D5CD366E-F688-4E82-B179-B0530BC21377}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [UDP Query User{EBDC1CCF-B409-4C2C-8A18-002EC0E7902B}C:\program files (x86)\network print monitor\pswizard-lpr.exe] => (Allow) C:\program files (x86)\network print monitor\pswizard-lpr.exe () [File not signed]
FirewallRules: [{88AE1167-35CF-4A3C-B1A4-C809BEB2BE59}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00B7F292-9D74-46DC-AF0F-8C10C85A8925}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0550766C-8990-4F90-A228-C397A2B7EA83}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{1793B47C-65BE-4CC3-AED5-309D3104443E}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{6DAEF2CA-BEE8-477A-8D3A-140551442F50}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{7FD0398F-ED20-44FB-8A02-E2B88379831A}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{E155F248-A43A-42CE-937B-191572D3F090}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{4BB3EC4D-4963-4B2C-BE83-3513CE0DD584}] => (Allow) C:\Program Files (x86)\Geniatech\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{7991E652-F01D-46F1-B3D0-AF0EE136AAC2}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [UDP Query User{E6A6F1CA-4FFA-4382-8416-1E98DCEAC80C}C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe] => (Allow) C:\program files (x86)\geniatech\totaltv player\cinergydvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{E98497D8-7CFA-4E7B-9BFD-4F040175494E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{286BE9AF-8B10-4369-96F6-655E54B571E4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777935}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA9}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777934}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA8}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{EB94C739-0A4D-459F-B4E9-16D4F0912782}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{8DD177E0-0791-49CC-81F8-414830CD3357}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe (Greatis Software LLC -> Greatis Software)
FirewallRules: [{9E8BD6B0-C150-49D4-8BFC-77B37038E5D7}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{2CC5F19F-5080-40A8-984E-F98E24BE11AA}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe (Greatis Software LLC -> Greais Software)
FirewallRules: [{4BADA533-C125-49C4-B0DC-54533D9610B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9029AF1F-5CD0-4D62-AA38-D3B5E433333B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{18122F01-3107-46BB-9818-F08382BD2351}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{295723E0-49CF-43E4-A046-A82DB69A5C0F}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AA9503E3-6E1D-49D6-9A02-20E0D7ADCF6D}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD0395D6-03AE-4536-9B37-530CE0FA165A}] => (Allow) %SystemRoot%\ehome\ehrecvr.exe => No File
==================== Restore Points =========================
09-11-2020 16:31:35 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/09/2020 04:35:45 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/09/2020 04:31:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/18/2020 10:48:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/08/2020 01:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (10/08/2020 09:15:50 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (09/30/2020 01:33:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/30/2020 01:25:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: 0456211f-9b01-4090-b0ed-b5fad82a1de2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2020 01:25:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TMPGEncAuthoringWorks5Encoder.exe, verze: 5.0.8.26, časové razítko: 0x4f9130c6
Název chybujícího modulu: divx.dll, verze: 5.1.1.1031, časové razítko: 0x3fb1792a
Kód výjimky: 0xc0000005
Posun chyby: 0x001da001
ID chybujícího procesu: 0x148
Čas spuštění chybující aplikace: 0x01d69724c705be9c
Cesta k chybující aplikaci: C:\Program Files (x86)\Pegasys Inc\TMPGEnc Authoring Works 5\TMPGEncAuthoringWorks5Encoder.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\divx.dll
ID zprávy: d7252185-37cc-422c-ba04-c72a31c4ce9a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (11/09/2020 06:10:38 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 06:05:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.
Error: (11/09/2020 06:05:02 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v offline režimu.
Error: (11/09/2020 06:00:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 05:55:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
Error: (11/09/2020 05:55:07 PM) (Source: BROWSER) (EventID: 8009) (User: )
Description: Prohledávač se nemůže povýšit na hlavní prohledávač. Za hlavní prohledávač
se aktuálně považuje počítač MYCLOUD-ZD4XRV.
Error: (11/09/2020 05:49:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.168 nepovolil získání názvu
tímto počítačem.
CodeIntegrity:
===================================
Date: 2020-11-09 18:02:01.9650000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:59.5170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:59.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.9030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.7180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:58.4670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:53.5070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-09 18:01:53.2290000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F.19 05/27/2016
Motherboard: HP 80B8
Processor: AMD A8-7410 APU with AMD Radeon R5 Graphics
Percentage of memory in use: 82%
Total physical RAM: 3518.88 MB
Available physical RAM: 612.48 MB
Total Virtual: 5246.88 MB
Available Virtual: 1009.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.06 GB) (Free:11.24 GB) NTFS
\\?\Volume{b43d61db-c560-4a32-aca9-d31640847cfc}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{6d0efb9f-1fbc-45ac-8164-b24bf57fa9a5}\ () (Fixed) (Total:0.86 GB) (Free:0.34 GB) NTFS
\\?\Volume{6b087b33-927b-45cb-9213-bee70815187d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{8c374aef-a6e2-11e9-a577-e09467f6a030}\ () (Removable) (Total:1790.64 GB) (Free:681.37 GB) KDDFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
