extremne zpomaleny internet
Napsal: 25 pro 2020 22:29
Ahoj, dobry den, prosim o kontrolu logu. Pritelkyne pocitac ma problem s jakoukoliv cinnosti na internetu (stahovani dat...) vse je velmi pomale. Predem diky za pomoc!
frst log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by ala (administrator) on DESKTOP-O0BRIV9 (Dell Inc. Inspiron 3780) (25-12-2020 22:19:43)
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\bccavsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files\AVG\Antivirus\bcc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Rivet Networks LLC -> DELL) C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [156808 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [5160760 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ala\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\Installer\chrmstp.exe [2020-12-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07AAAD4F-DA0D-4542-8E26-2CFB17A24C98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {21C2A005-54F9-4FB7-9958-A8646648A1BD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2758423A-D691-4F90-AF43-EB67BC063F1B} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059336 2020-12-04] (Dell Inc -> Dell Inc.)
Task: {29D5A5BC-5371-4074-8859-AE64252B5BC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C770C40-4AF4-4E0E-BDD0-16CC9ACB222D} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [95072 2020-08-14] (Rivet Networks LLC -> DELL)
Task: {43C4DD4C-4C95-41C2-945E-8A5F2C6961AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {56DE5CEA-A53D-4F83-8043-2F6FAE2F295B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {61001762-2D18-4A6A-8D70-99B81D3F6A32} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6B029546-AA10-4FF6-8400-F2E486258FA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DF710D-5E29-4225-B530-BBD71DFE8D0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {94C2C7D3-B58A-4FE1-A1C4-3C08D889146E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C23A1732-1103-4F50-A505-5641BDDA85E4} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D03391D7-4210-4CF1-86E8-DE6431BED95F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {DF26CE9E-C3D5-4C74-93C8-43FBFEE216A4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {ED3F1085-7ACA-4EA3-83E1-C4DD8DC0A316} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EEB136A7-0B86-4549-B40E-B5430757A59B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {FA857791-1974-4587-A8CD-92C2CD846F13} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{722c7352-e06c-4049-9082-3f02fe44d264}: [DhcpNameServer] 147.230.16.240 147.230.16.140
Tcpip\..\Interfaces\{a803e742-f451-432a-832f-6503d089d08b}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c765404f-c0d1-4425-a6f6-c81c65e93023}: [DhcpNameServer] 147.230.16.140 147.230.16.1
Tcpip\..\Interfaces\{e272aa39-2491-49aa-abe3-f3ad975f619e}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
======
Edge Notifications: HKU\S-1-5-21-3139865290-4020562401-507065138-1001 -> hxxps://www.reflex.cz
Edge DefaultProfile: Default
Edge Profile: C:\Users\ala\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-21]
FireFox:
========
FF DefaultProfile: 9eb1quei.default
FF ProfilePath: C:\Users\ala\AppData\Roaming\Zotero\Zotero\Profiles\9eb1quei.default [2020-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default [2020-12-25]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.reflex.cz
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Dokumenty) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Disk Google) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (Seznam doplněk - Email) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-12-11]
CHR Extension: (YouTube) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-24]
CHR Extension: (Zotero Connector) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2020-12-24]
CHR Extension: (Tabulky) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-24]
CHR Extension: (Save to Facebook) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-02-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-11]
CHR HKU\S-1-5-21-3139865290-4020562401-507065138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [358432 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Business Console Client Antivirus Service; C:\Program Files\AVG\Antivirus\bccavsvc.exe [3862664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientService.exe [71104 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgBcc; C:\Program Files\AVG\Antivirus\bcc.exe [1279416 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7871424 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\elevation_service.exe [1409224 2020-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482680 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2020-08-18] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2020-12-11] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [293528 2018-10-20] (Dell Inc -> Dell Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2020-10-29] (Dell Inc -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [64848 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64856 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1630576 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2385256 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2020-12-04] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdisk.sys [160384 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24952 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74048 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2020-12-25 22:20 - 000000000 ____D C:\FRST
2020-12-16 10:13 - 2020-12-16 10:13 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-12-15 10:29 - 2020-12-15 10:29 - 001239586 _____ C:\Users\ala\Downloads\0418TR.PDF
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-14 08:13 - 2020-12-14 08:13 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-07 13:41 - 2020-12-07 13:41 - 000024952 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2020-12-07 13:20 - 2020-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-12-07 13:18 - 2020-12-07 13:18 - 000003068 _____ C:\WINDOWS\system32\Tasks\SmartByte Telemetry
2020-12-07 13:18 - 2020-12-07 13:18 - 000000000 ____D C:\Program Files\Rivet Networks
2020-12-07 13:17 - 2020-12-07 13:17 - 000000000 ____D C:\WINDOWS\{4AD4E1A9-DEDE-4B9F-A864-284E82E97C2D}
2020-12-07 13:14 - 2020-12-07 13:15 - 000000000 ____D C:\ProgramData\Temp
2020-12-07 13:14 - 2020-12-07 13:14 - 000000000 ____D C:\WINDOWS\{E78AC032-4356-4C1D-820A-951B0B5EABF6}
2020-12-03 14:21 - 2020-12-11 10:37 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-12-02 16:10 - 2020-12-02 16:10 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-02 16:10 - 2020-12-02 16:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-12-02 16:10 - 2020-12-02 16:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-12-02 10:40 - 2020-12-02 10:41 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (2).pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products.pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products (1).pdf
2020-11-26 12:06 - 2020-11-26 12:06 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-25 22:13 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\AppData\Roaming\Seznam.cz
2020-12-25 22:12 - 2020-11-21 13:31 - 000000000 ____D C:\Program Files\CCleaner
2020-12-25 22:10 - 2020-10-08 16:30 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{30B6437D-C228-47AE-A365-8751C0F946E4}
2020-12-25 22:08 - 2019-07-01 02:55 - 000000000 ___RD C:\Users\ala\OneDrive
2020-12-25 22:07 - 2019-07-01 02:53 - 000000000 __SHD C:\Users\ala\IntelGraphicsProfiles
2020-12-25 22:07 - 2019-05-16 09:59 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-12-24 21:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-24 21:16 - 2020-10-08 16:30 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-24 21:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-12-24 20:20 - 2020-10-08 16:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-24 17:20 - 2020-10-08 16:30 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-24 17:20 - 2019-12-07 15:41 - 000719302 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-24 17:20 - 2019-12-07 15:41 - 000145428 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-24 17:19 - 2020-11-21 13:31 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-24 17:16 - 2020-10-08 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-24 17:16 - 2020-10-08 16:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-24 17:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-24 17:15 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-24 10:06 - 2020-10-08 16:22 - 000000000 ____D C:\Users\ala
2020-12-21 20:13 - 2020-08-22 07:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-18 07:52 - 2020-11-21 13:36 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:36 - 000002354 _____ C:\ProgramData\Plocha\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:33 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-12-16 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-16 10:12 - 2019-07-08 08:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-12-14 11:06 - 2019-07-01 02:53 - 000000000 ____D C:\Users\ala\AppData\Local\Packages
2020-12-14 09:15 - 2020-08-09 16:28 - 000000000 ____D C:\Users\ala\AppData\Local\CrashDumps
2020-12-14 08:26 - 2019-05-16 09:55 - 000000000 ____D C:\ProgramData\PCDr
2020-12-14 08:24 - 2020-10-08 16:19 - 000365784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 11:34 - 2020-01-18 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-12-11 11:33 - 2019-05-16 10:05 - 000000000 ____D C:\ProgramData\Dell
2020-12-11 11:27 - 2020-10-08 16:30 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2020-12-11 10:47 - 2019-07-08 09:34 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-11 10:21 - 2020-09-14 13:56 - 000000000 ____D C:\Users\ala\AppData\Roaming\qBittorrent
2020-12-08 10:10 - 2020-10-08 16:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3139865290-4020562401-507065138-1001
2020-12-08 10:10 - 2020-10-08 16:22 - 000002357 _____ C:\Users\ala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-07 13:39 - 2019-05-16 09:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-07 13:24 - 2019-07-29 07:42 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-07 13:23 - 2019-05-16 09:54 - 000000000 ____D C:\Program Files\Intel
2020-12-07 13:21 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-12-07 13:19 - 2019-05-16 09:57 - 000000000 ____D C:\ProgramData\Intel
2020-12-07 13:19 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-07 13:15 - 2019-05-16 09:55 - 000000000 ____D C:\Program Files\Dell
2020-12-07 10:09 - 2020-10-08 16:30 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-07 10:09 - 2020-10-08 16:30 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 16:10 - 2020-08-03 10:17 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000160384 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdisk.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-12-02 16:10 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:01 - 2020-11-05 10:18 - 000001989 _____ C:\ProgramData\Plocha\AVG Business Security.lnk
2020-12-02 12:01 - 2020-08-03 10:19 - 000002001 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Business Security.lnk
2020-12-02 11:35 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Roaming\WhatsApp
2020-12-02 11:09 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Local\WhatsApp
2020-12-01 23:28 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\Zotero
2020-12-01 10:40 - 2019-07-01 10:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-01 10:40 - 2019-07-01 10:23 - 000000000 ____D C:\Users\ala\AppData\Local\PlaceholderTileLogoFolder
2020-12-01 10:39 - 2019-07-01 10:32 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-30 09:32 - 2020-10-08 16:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 09:32 - 2020-10-08 16:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2019-07-31 07:54 - 2019-07-31 07:54 - 060465450 _____ () C:\Program Files (x86)\GraphPad_Prism_8.0.1.244.zip
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (25-12-2020 22:21:19)
Running from C:\Users\ala\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-10-08 15:30:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3139865290-4020562401-507065138-500 - Administrator - Disabled)
ala (S-1-5-21-3139865290-4020562401-507065138-1001 - Administrator - Enabled) => C:\Users\ala
DefaultAccount (S-1-5-21-3139865290-4020562401-507065138-503 - Limited - Disabled)
Guest (S-1-5-21-3139865290-4020562401-507065138-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3139865290-4020562401-507065138-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.08 - Advanced Micro Devices, Inc.)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 87.0.7479.91 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CGS15_IPM_T2 (HKLM-x32\...\{05D18A0F-ED9D-4FBD-9BF5-AF632EB09CB3}) (Version: 15.0 - Corel Corporation) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.8.03036 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{111CF284-F3AF-46A8-96FC-491E5E05AB72}) (Version: 4.8.03036 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.0.515 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (HKLM-x32\...\{356658C7-8C60-4A43-AF50-75CA8E642934}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (HKLM-x32\...\{938C2383-A692-4D2C-AE45-024F91EF7B1D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SU (HKLM-x32\...\{DB566C0C-FC66-4CB2-BD34-DC4C4064487E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SV (HKLM-x32\...\{442A8A49-FD74-4B16-9617-AD958F332677}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (HKLM\...\{69ADE77E-8D0F-4FD9-8F4A-37BA2CCC011E}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{368FCA18-C510-4F87-B60E-192B9BDBAE3D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.)
Dell Power Manager Service (HKLM\...\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}) (Version: 3.7.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\{684820E8-F6AA-4162-A547-317DA6BED1FB}) (Version: 3.8.0.108 - Dell Inc.)
Dell SupportAssist Remediation (HKLM\...\{03C35F56-A9AD-4B59-B061-B8CE41C4C22B}) (Version: 4.1.0.6830 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{3C4F6923-3BE1-4E6C-8DEE-9EEF1E433795}) (Version: 5.2.1.12926 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{8d32f870-d6fd-4420-b5cb-c29ac65f628d}) (Version: 5.2.1.12926 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{41D2D254-D869-4CD8-B440-5DF49083C4BA}) (Version: 4.0.0 - Dell, Inc.)
Fotor 3.4.1 (HKLM-x32\...\Fotor) (Version: 3.4.1 - Everimaging Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\GrammarlyForWindows) (Version: 1.5.57 - Grammarly)
GraphPad Prism 8.0.2.263 (HKLM\...\{A19AE29D-4454-4B51-B818-C612E2635E7A}) (Version: 8.2.263 - GraphPad Software Inc.)
Image Resizer for Windows (64 bit) (HKLM\...\{6026BD89-5CCA-4A47-8012-08FDA0EF935A}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{0903AF19-2041-4EBB-81CB-7A1506EC9868}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{e798dcc8-a5a5-424e-9f9a-8148e824ab13}) (Version: 3.1.2.0 - Brice Lambson)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.3.1026 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{5EEB8181-5D0C-4913-A61F-00DCB6CBAF63}) (Version: 17.5.3.1026 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{EF00A575-F9E8-8989-1957-B80B06DB06A9}) (Version: 1.00.1. - AMD) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10518 - Qualcomm)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\SeznamInstall) (Version: 2.1.35 - Seznam.cz)
SmartByte Drivers and Services (HKLM\...\{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 - Název společnosti:)
WhatsApp (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\WhatsApp) (Version: 2.2047.12 - WhatsApp)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zotero (HKLM-x32\...\Zotero 5.0.72 (x86 en-US)) (Version: 5.0.72 - Corporation for Digital Scholarship)
Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-07-01] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.48.2.0_x86__kgqvnymyfvs32 [2020-11-28] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1910.3.0_x86__kgqvnymyfvs32 [2020-12-04] (king.com)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.2.22.0_x64__2dgmkzkw4h30c [2020-09-18] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-21] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-05-29] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0 [2020-12-09] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.7.10.0_x64__htrsf667h5kn2 [2020-10-07] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.8.8.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.0.33.0_x86__htrsf667h5kn2 [2020-12-07] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-19] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-19] (Dropbox Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-28] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-18] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-01] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.54.0_x64__wafk5atnkzcwy [2020-12-03] (McAfee LLC.)
Media Suite Essentials for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-29] (CYBERLINK CORPORATION.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_810.6.118.0_x64__8xx8rvfyw5nnt [2020-12-11] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.7.25.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-13] (INTEL CORP) [Startup Task]
Power Media Player for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-07-02] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-14] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2019-07-01] (CYBERLINK CORPORATION.)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-15] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2019-07-01] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2019-12-23] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\ala\Favorites\Fotor for desktop.lnk -> hxxp://www.fotor.com/windows/review.htm
==================== Loaded Modules (Whitelisted) =============
2020-04-09 19:11 - 2020-04-09 19:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000114176 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ctypes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000172544 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_elementtree.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002255872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_hashlib.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000032256 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_multiprocessing.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000046080 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_psutil_windows.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000047616 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_socket.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002824704 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ssl.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026112 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_yappi.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000080896 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\bz2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000016384 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\common.time34.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000007680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\hashobjs_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000301568 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\PIL._imaging.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000168448 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pyexpat.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001084416 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pysqlite2._sqlite.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000548864 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pythoncom27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137728 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pywintypes27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000010752 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\select.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\thumbnails_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000689664 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\unicodedata.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000119808 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\usb_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000128512 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32api.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000438784 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32com.shell.shell.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000011776 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32crypt.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000023040 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32event.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000149504 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32file.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000223232 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32gui.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000048128 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32inet.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000029696 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pdh.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000027648 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pipe.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000044032 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32process.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32profile.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000136192 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32security.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026624 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32ts.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000034816 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.conditional.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000038400 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.connectivity.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000071680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.device_monitor.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000109056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.volumes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.winwrap.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001325056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._controls_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001489408 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._core_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001007104 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._gdi_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000103424 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._html2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000916992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._misc_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001039872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._windows_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\python27.dll
2020-08-14 21:29 - 2020-08-14 21:29 - 000122880 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2020-12-01 00:14 - 2020-12-01 00:14 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-09 10:51 - 2020-12-09 10:54 - 008830976 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\core.uwp.dll
2020-12-09 10:51 - 2020-12-09 10:55 - 045847552 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_net_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_adv_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_core_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_html_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\sharepoint.com -> hxxps://tulib-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ala\OneDrive\Plocha\Jarda\vojta ČL\Vialkove testy\Vialky 02 - pokracovani\EMS\10um\_5 lac.tif
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3BFAE4B9-3D89-4375-9E6D-3FFD2C8FD63B}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{89722988-003D-4409-94E2-398DCFEB278F}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{853F7D17-7C1C-4ACC-95B7-521D6822DD2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11929.20300.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2B1B235-C33F-470B-859A-6CDBEB7264EE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E20EF49A-EFB9-43B2-9C6E-6D22BD48985E}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{EED9ECC6-1B3A-4C97-8709-5CFD71BC5F0A}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{3D1DB1F0-EC49-4BAC-A059-4E2F121C2756}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2F0409A0-FC28-446A-B9C4-20ED864848FA}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0CE1FB46-F357-4500-9E8F-40090AF19687}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9BC2930F-E309-4124-BFE8-5E9088BCDBAF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39CD304A-9F17-40AD-BB73-2FF20ED25EE9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{989065EF-69BF-4F8B-9375-C349197B7EB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27FA24E-505C-4EF9-B17A-02031CEE4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{413B178D-9564-4A38-AFD1-5524D389E8A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9CF9AF65-850D-49DC-BD49-D30EA3FD5C82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{56298E8A-033B-44A4-BB85-46A9F69AFA2A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AC08E5C-3F3F-42A8-820F-CD9DBAEFAF67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1982F62C-BAE4-4A6C-A778-D1435E0B704E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{2E3B7024-966F-4E07-BAA4-C715E3030359}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{30260A38-43BA-47E9-A29C-3133723975CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{20F2126B-EE00-4F15-B5D7-0708051E9FFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F241DC98-9BAA-48D4-8AF8-B0C7A764019F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE4BBD5C-BED4-4B35-9190-B0EDB955DB3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96ECD631-B698-4ACF-82D9-64A60FF5C0CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F999DAC1-DE05-4523-94F0-9A8C7113678A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{131B172D-2BCF-4775-95E9-FB1163744521}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0945FBFD-D22F-4094-876B-A7945BC63EF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0305DFE0-68C8-4D71-96A0-AC19B98B06D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD11540F-E797-4386-9B91-45A91676CF2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6459EE6D-B43C-4C26-B97F-96948D9CF8C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B0EB2E-927D-4474-9CAD-8F37A7861985}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F05F122-B967-4C49-BE64-24293A6A042C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:103.81 GB) (Free:47.79 GB) (46%)
==================== Faulty Device Manager Devices ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2020 10:09:28 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:16:39 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 05:18:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 04:54:30 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 10:09:11 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:53:31 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/21/2020 08:11:35 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/20/2020 08:45:34 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (12/25/2020 10:21:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===================================
Date: 2020-12-25 22:17:43.0180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:40.2750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8400000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8120000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:38.7630000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.11.0 06/03/2020
Motherboard: Dell Inc. 0PKJX9
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 71%
Total physical RAM: 8068.39 MB
Available physical RAM: 2335.55 MB
Total Virtual: 12676.39 MB
Available Virtual: 5592.57 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:103.81 GB) (Free:47.78 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:883.76 GB) NTFS
\\?\Volume{5e932c26-bcbe-452d-9f32-a72913bff296}\ () (Fixed) (Total:0.79 GB) (Free:0.1 GB) NTFS
\\?\Volume{c3ae85ae-260e-4f51-b2e2-eae918345159}\ (Image) (Fixed) (Total:12.63 GB) (Free:0.17 GB) NTFS
\\?\Volume{2cd1376c-338f-4fcb-a5a9-8f12d8636ba8}\ (DELLSUPPORT) (Fixed) (Total:1.14 GB) (Free:0.55 GB) NTFS
\\?\Volume{83ea36af-1d57-43bc-a0e6-512b11f13703}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.65 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4ACDDEFA)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 4ACDD678)
Partition: GPT.
==================== End of Addition.txt =======================
frst log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by ala (administrator) on DESKTOP-O0BRIV9 (Dell Inc. Inspiron 3780) (25-12-2020 22:19:43)
Running from C:\Users\ala\OneDrive\Plocha
Loaded Profiles: ala
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\bccavsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files\AVG\Antivirus\bcc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_39c3e17a2e95f0ed\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ala\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\SystemIdleCheck.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Rivet Networks LLC -> DELL) C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe
(Screenovate Technologies) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\ala\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [156808 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [5160760 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ala\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ala\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\Installer\chrmstp.exe [2020-12-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07AAAD4F-DA0D-4542-8E26-2CFB17A24C98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {21C2A005-54F9-4FB7-9958-A8646648A1BD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563200 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2758423A-D691-4F90-AF43-EB67BC063F1B} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059336 2020-12-04] (Dell Inc -> Dell Inc.)
Task: {29D5A5BC-5371-4074-8859-AE64252B5BC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C770C40-4AF4-4E0E-BDD0-16CC9ACB222D} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [95072 2020-08-14] (Rivet Networks LLC -> DELL)
Task: {43C4DD4C-4C95-41C2-945E-8A5F2C6961AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {56DE5CEA-A53D-4F83-8043-2F6FAE2F295B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {61001762-2D18-4A6A-8D70-99B81D3F6A32} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6B029546-AA10-4FF6-8400-F2E486258FA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {74DF710D-5E29-4225-B530-BBD71DFE8D0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {94C2C7D3-B58A-4FE1-A1C4-3C08D889146E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C23A1732-1103-4F50-A505-5641BDDA85E4} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {CAD7F93C-83BB-48E8-A89E-480954E8E8AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {D03391D7-4210-4CF1-86E8-DE6431BED95F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208200 2020-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D814C0D1-78D5-40AA-B119-567B56DCF650} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {DF26CE9E-C3D5-4C74-93C8-43FBFEE216A4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {ED3F1085-7ACA-4EA3-83E1-C4DD8DC0A316} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EEB136A7-0B86-4549-B40E-B5430757A59B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
Task: {FA857791-1974-4587-A8CD-92C2CD846F13} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2194856 2020-12-15] (Piriform Software Ltd -> Piriform Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{722c7352-e06c-4049-9082-3f02fe44d264}: [DhcpNameServer] 147.230.16.240 147.230.16.140
Tcpip\..\Interfaces\{a803e742-f451-432a-832f-6503d089d08b}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c765404f-c0d1-4425-a6f6-c81c65e93023}: [DhcpNameServer] 147.230.16.140 147.230.16.1
Tcpip\..\Interfaces\{e272aa39-2491-49aa-abe3-f3ad975f619e}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
======
Edge Notifications: HKU\S-1-5-21-3139865290-4020562401-507065138-1001 -> hxxps://www.reflex.cz
Edge DefaultProfile: Default
Edge Profile: C:\Users\ala\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-21]
FireFox:
========
FF DefaultProfile: 9eb1quei.default
FF ProfilePath: C:\Users\ala\AppData\Roaming\Zotero\Zotero\Profiles\9eb1quei.default [2020-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-11-21] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default [2020-12-25]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://www.reflex.cz
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Dokumenty) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Disk Google) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (Seznam doplněk - Email) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-12-11]
CHR Extension: (YouTube) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-24]
CHR Extension: (Zotero Connector) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2020-12-24]
CHR Extension: (Tabulky) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-24]
CHR Extension: (Save to Facebook) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-02-06]
CHR Extension: (Grammarly for Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\ala\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\ala\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-11]
CHR HKU\S-1-5-21-3139865290-4020562401-507065138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [358432 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Business Console Client Antivirus Service; C:\Program Files\AVG\Antivirus\bccavsvc.exe [3862664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientService.exe [71104 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgBcc; C:\Program Files\AVG\Antivirus\bcc.exe [1279416 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7871424 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\87.0.7479.91\elevation_service.exe [1409224 2020-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-11-21] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482680 2020-11-30] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2020-08-18] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2020-12-11] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [293528 2018-10-20] (Dell Inc -> Dell Inc.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5CBFD82C-E688-4413-9C42-361C3FD76573} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2020-10-29] (Dell Inc -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [64848 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64856 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1630576 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2385256 2020-08-14] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2020-12-04] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdisk.sys [160384 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24952 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74048 2020-03-04] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2020-12-25 22:20 - 000000000 ____D C:\FRST
2020-12-16 10:13 - 2020-12-16 10:13 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-12-15 10:29 - 2020-12-15 10:29 - 001239586 _____ C:\Users\ala\Downloads\0418TR.PDF
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-14 08:13 - 2020-12-14 08:13 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-14 08:13 - 2020-12-14 08:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-14 08:13 - 2020-12-14 08:13 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-14 08:13 - 2020-12-14 08:13 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-14 08:12 - 2020-12-14 08:12 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-14 08:12 - 2020-12-14 08:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-14 08:12 - 2020-12-14 08:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-07 13:41 - 2020-12-07 13:41 - 000024952 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2020-12-07 13:20 - 2020-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-12-07 13:18 - 2020-12-07 13:18 - 000003068 _____ C:\WINDOWS\system32\Tasks\SmartByte Telemetry
2020-12-07 13:18 - 2020-12-07 13:18 - 000000000 ____D C:\Program Files\Rivet Networks
2020-12-07 13:17 - 2020-12-07 13:17 - 000000000 ____D C:\WINDOWS\{4AD4E1A9-DEDE-4B9F-A864-284E82E97C2D}
2020-12-07 13:14 - 2020-12-07 13:15 - 000000000 ____D C:\ProgramData\Temp
2020-12-07 13:14 - 2020-12-07 13:14 - 000000000 ____D C:\WINDOWS\{E78AC032-4356-4C1D-820A-951B0B5EABF6}
2020-12-03 14:21 - 2020-12-11 10:37 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-12-02 16:10 - 2020-12-02 16:10 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-12-02 16:10 - 2020-12-02 16:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-12-02 16:10 - 2020-12-02 16:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-12-02 10:40 - 2020-12-02 10:41 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (2).pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products.pdf
2020-11-26 12:07 - 2020-11-26 12:07 - 000720307 _____ C:\Users\ala\Downloads\[18986196 - Ecological Chemistry and Engineering S] Cost-Effective Remediation Using Microscale Zvi_ Comparison of Commercially Available Products (1).pdf
2020-11-26 12:06 - 2020-11-26 12:06 - 001234765 _____ C:\Users\ala\Downloads\1-s2.0-S0045653520329623-main (1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-25 22:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-25 22:13 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\AppData\Roaming\Seznam.cz
2020-12-25 22:12 - 2020-11-21 13:31 - 000000000 ____D C:\Program Files\CCleaner
2020-12-25 22:10 - 2020-10-08 16:30 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{30B6437D-C228-47AE-A365-8751C0F946E4}
2020-12-25 22:08 - 2019-07-01 02:55 - 000000000 ___RD C:\Users\ala\OneDrive
2020-12-25 22:07 - 2019-07-01 02:53 - 000000000 __SHD C:\Users\ala\IntelGraphicsProfiles
2020-12-25 22:07 - 2019-05-16 09:59 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-12-24 21:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-24 21:16 - 2020-10-08 16:30 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-24 21:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-12-24 20:20 - 2020-10-08 16:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-24 17:20 - 2020-10-08 16:30 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-24 17:20 - 2019-12-07 15:41 - 000719302 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-24 17:20 - 2019-12-07 15:41 - 000145428 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-24 17:19 - 2020-11-21 13:31 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-24 17:16 - 2020-10-08 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-24 17:16 - 2020-10-08 16:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-24 17:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-24 17:15 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-24 10:06 - 2020-10-08 16:22 - 000000000 ____D C:\Users\ala
2020-12-21 20:13 - 2020-08-22 07:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 08:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-18 07:52 - 2020-11-21 13:36 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:36 - 000002354 _____ C:\ProgramData\Plocha\CCleaner Browser.lnk
2020-12-18 07:52 - 2020-11-21 13:33 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-12-16 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-16 10:12 - 2019-07-08 08:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-12-14 11:06 - 2019-07-01 02:53 - 000000000 ____D C:\Users\ala\AppData\Local\Packages
2020-12-14 09:15 - 2020-08-09 16:28 - 000000000 ____D C:\Users\ala\AppData\Local\CrashDumps
2020-12-14 08:26 - 2019-05-16 09:55 - 000000000 ____D C:\ProgramData\PCDr
2020-12-14 08:24 - 2020-10-08 16:19 - 000365784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-14 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 11:34 - 2020-01-18 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-12-11 11:33 - 2019-05-16 10:05 - 000000000 ____D C:\ProgramData\Dell
2020-12-11 11:27 - 2020-10-08 16:30 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2020-12-11 10:47 - 2019-07-08 09:34 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-11 10:21 - 2020-09-14 13:56 - 000000000 ____D C:\Users\ala\AppData\Roaming\qBittorrent
2020-12-08 10:10 - 2020-10-08 16:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3139865290-4020562401-507065138-1001
2020-12-08 10:10 - 2020-10-08 16:22 - 000002357 _____ C:\Users\ala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-07 13:39 - 2019-05-16 09:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-07 13:24 - 2019-07-29 07:42 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-07 13:23 - 2019-05-16 09:54 - 000000000 ____D C:\Program Files\Intel
2020-12-07 13:21 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-12-07 13:19 - 2019-05-16 09:57 - 000000000 ____D C:\ProgramData\Intel
2020-12-07 13:19 - 2019-05-16 09:56 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-07 13:15 - 2019-05-16 09:55 - 000000000 ____D C:\Program Files\Dell
2020-12-07 10:09 - 2020-10-08 16:30 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-07 10:09 - 2020-10-08 16:30 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 16:10 - 2020-08-03 10:17 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000160384 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdisk.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-12-02 16:10 - 2020-08-03 10:17 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-12-02 16:10 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:01 - 2020-11-05 10:18 - 000001989 _____ C:\ProgramData\Plocha\AVG Business Security.lnk
2020-12-02 12:01 - 2020-08-03 10:19 - 000002001 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Business Security.lnk
2020-12-02 11:35 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Roaming\WhatsApp
2020-12-02 11:09 - 2020-08-17 11:15 - 000000000 ____D C:\Users\ala\AppData\Local\WhatsApp
2020-12-01 23:28 - 2019-07-25 15:10 - 000000000 ____D C:\Users\ala\Zotero
2020-12-01 10:40 - 2019-07-01 10:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-01 10:40 - 2019-07-01 10:23 - 000000000 ____D C:\Users\ala\AppData\Local\PlaceholderTileLogoFolder
2020-12-01 10:39 - 2019-07-01 10:32 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-30 09:32 - 2020-10-08 16:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 09:32 - 2020-10-08 16:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2019-07-31 07:54 - 2019-07-31 07:54 - 060465450 _____ () C:\Program Files (x86)\GraphPad_Prism_8.0.1.244.zip
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by ala (25-12-2020 22:21:19)
Running from C:\Users\ala\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-10-08 15:30:28)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3139865290-4020562401-507065138-500 - Administrator - Disabled)
ala (S-1-5-21-3139865290-4020562401-507065138-1001 - Administrator - Enabled) => C:\Users\ala
DefaultAccount (S-1-5-21-3139865290-4020562401-507065138-503 - Limited - Disabled)
Guest (S-1-5-21-3139865290-4020562401-507065138-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3139865290-4020562401-507065138-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.08 - Advanced Micro Devices, Inc.)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 87.0.7479.91 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CGS15_IPM_T2 (HKLM-x32\...\{05D18A0F-ED9D-4FBD-9BF5-AF632EB09CB3}) (Version: 15.0 - Corel Corporation) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.8.03036 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{111CF284-F3AF-46A8-96FC-491E5E05AB72}) (Version: 4.8.03036 - Cisco Systems, Inc.) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.0.515 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{65094424-9351-40B8-939B-3676D67E48E0}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (HKLM-x32\...\{356658C7-8C60-4A43-AF50-75CA8E642934}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (HKLM-x32\...\{938C2383-A692-4D2C-AE45-024F91EF7B1D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SU (HKLM-x32\...\{DB566C0C-FC66-4CB2-BD34-DC4C4064487E}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - SV (HKLM-x32\...\{442A8A49-FD74-4B16-9617-AD958F332677}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (HKLM\...\{69ADE77E-8D0F-4FD9-8F4A-37BA2CCC011E}) (Version: 15.0.515 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{368FCA18-C510-4F87-B60E-192B9BDBAE3D}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.488 - Corel Corporation)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{04DF02C6-E3D7-4D26-A44C-6F8A2E218D2C}) (Version: 1.3.6844 - Screenovate Technologies Ltd.)
Dell Power Manager Service (HKLM\...\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}) (Version: 3.7.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\{684820E8-F6AA-4162-A547-317DA6BED1FB}) (Version: 3.8.0.108 - Dell Inc.)
Dell SupportAssist Remediation (HKLM\...\{03C35F56-A9AD-4B59-B061-B8CE41C4C22B}) (Version: 4.1.0.6830 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{f4ee83d8-d901-4c1a-b5a2-288427598fe2}) (Version: 4.1.0.6830 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{3C4F6923-3BE1-4E6C-8DEE-9EEF1E433795}) (Version: 5.2.1.12926 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{8d32f870-d6fd-4420-b5cb-c29ac65f628d}) (Version: 5.2.1.12926 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{41D2D254-D869-4CD8-B440-5DF49083C4BA}) (Version: 4.0.0 - Dell, Inc.)
Fotor 3.4.1 (HKLM-x32\...\Fotor) (Version: 3.4.1 - Everimaging Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\GrammarlyForWindows) (Version: 1.5.57 - Grammarly)
GraphPad Prism 8.0.2.263 (HKLM\...\{A19AE29D-4454-4B51-B818-C612E2635E7A}) (Version: 8.2.263 - GraphPad Software Inc.)
Image Resizer for Windows (64 bit) (HKLM\...\{6026BD89-5CCA-4A47-8012-08FDA0EF935A}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{0903AF19-2041-4EBB-81CB-7A1506EC9868}) (Version: 3.1.2.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{e798dcc8-a5a5-424e-9f9a-8148e824ab13}) (Version: 3.1.2.0 - Brice Lambson)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.375 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6577 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.3.1026 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{5EEB8181-5D0C-4913-A61F-00DCB6CBAF63}) (Version: 17.5.3.1026 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10369.20032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10369.20032 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{EF00A575-F9E8-8989-1957-B80B06DB06A9}) (Version: 1.00.1. - AMD) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10518 - Qualcomm)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8642 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\SeznamInstall) (Version: 2.1.35 - Seznam.cz)
SmartByte Drivers and Services (HKLM\...\{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 - Název společnosti:)
WhatsApp (HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\WhatsApp) (Version: 2.2047.12 - WhatsApp)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zotero (HKLM-x32\...\Zotero 5.0.72 (x86 en-US)) (Version: 5.0.72 - Corporation for Digital Scholarship)
Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-07-01] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.48.2.0_x86__kgqvnymyfvs32 [2020-11-28] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1910.3.0_x86__kgqvnymyfvs32 [2020-12-04] (king.com)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.2.22.0_x64__2dgmkzkw4h30c [2020-09-18] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-21] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-05-29] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0 [2020-12-09] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.7.10.0_x64__htrsf667h5kn2 [2020-10-07] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.8.8.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.0.33.0_x86__htrsf667h5kn2 [2020-12-07] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-19] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-19] (Dropbox Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-05] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-28] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-18] (Apple Inc.) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-07-01] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.54.0_x64__wafk5atnkzcwy [2020-12-03] (McAfee LLC.)
Media Suite Essentials for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-29] (CYBERLINK CORPORATION.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_810.6.118.0_x64__8xx8rvfyw5nnt [2020-12-11] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.7.25.0_x64__htrsf667h5kn2 [2020-12-11] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-13] (INTEL CORP) [Startup Task]
Power Media Player for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-07-02] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-14] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:\Program Files\WindowsApps\DB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2019-07-01] (CYBERLINK CORPORATION.)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-15] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2019-07-01] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2019-12-23] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-23] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\ala\Favorites\Fotor for desktop.lnk -> hxxp://www.fotor.com/windows/review.htm
==================== Loaded Modules (Whitelisted) =============
2020-04-09 19:11 - 2020-04-09 19:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000114176 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ctypes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000172544 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_elementtree.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002255872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_hashlib.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000032256 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_multiprocessing.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000046080 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_psutil_windows.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000047616 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_socket.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 002824704 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_ssl.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026112 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\_yappi.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000080896 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\bz2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000016384 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\common.time34.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000007680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\hashobjs_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000301568 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\PIL._imaging.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000168448 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pyexpat.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001084416 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pysqlite2._sqlite.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000548864 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pythoncom27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137728 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\pywintypes27.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000010752 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\select.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\thumbnails_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000689664 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\unicodedata.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000119808 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\usb_ext.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000128512 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32api.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000438784 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32com.shell.shell.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000011776 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32crypt.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000023040 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32event.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000149504 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32file.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000223232 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32gui.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000048128 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32inet.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000029696 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pdh.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000027648 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32pipe.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000044032 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32process.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32profile.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000136192 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32security.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000026624 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\win32ts.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000034816 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.conditional.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000038400 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.connectivity.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000071680 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.device_monitor.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000109056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.volumes.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000020480 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\windows.winwrap.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001325056 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._controls_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001489408 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._core_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001007104 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._gdi_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000103424 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._html2.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 000916992 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._misc_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 001039872 _____ () [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wx._windows_.pyd
2020-12-25 22:08 - 2020-12-25 22:08 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\python27.dll
2020-08-14 21:29 - 2020-08-14 21:29 - 000122880 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2020-12-01 00:14 - 2020-12-01 00:14 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2020-12-09 10:51 - 2020-12-09 10:54 - 008830976 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\core.uwp.dll
2020-12-09 10:51 - 2020-12-09 10:55 - 045847552 _____ (Screenovate Technologies Ltd.) [File not signed] C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\DellMobileConnectUniversalClient.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_net_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxbase30u_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_adv_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_core_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_html_vc90_x64.dll
2020-12-25 22:08 - 2020-12-25 22:08 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\ala\AppData\Local\Temp\_MEI67282\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3139865290-4020562401-507065138-1001\...\sharepoint.com -> hxxps://tulib-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3139865290-4020562401-507065138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ala\OneDrive\Plocha\Jarda\vojta ČL\Vialkove testy\Vialky 02 - pokracovani\EMS\10um\_5 lac.tif
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3BFAE4B9-3D89-4375-9E6D-3FFD2C8FD63B}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{89722988-003D-4409-94E2-398DCFEB278F}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{853F7D17-7C1C-4ACC-95B7-521D6822DD2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11929.20300.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2B1B235-C33F-470B-859A-6CDBEB7264EE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E20EF49A-EFB9-43B2-9C6E-6D22BD48985E}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{EED9ECC6-1B3A-4C97-8709-5CFD71BC5F0A}C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe] => (Allow) C:\users\ala\onedrive\plocha\ij150-win-jre6-32-bit\imagej\jre\bin\javaw.exe
FirewallRules: [TCP Query User{3D1DB1F0-EC49-4BAC-A059-4E2F121C2756}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2F0409A0-FC28-446A-B9C4-20ED864848FA}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0CE1FB46-F357-4500-9E8F-40090AF19687}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9BC2930F-E309-4124-BFE8-5E9088BCDBAF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39CD304A-9F17-40AD-BB73-2FF20ED25EE9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{989065EF-69BF-4F8B-9375-C349197B7EB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27FA24E-505C-4EF9-B17A-02031CEE4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{413B178D-9564-4A38-AFD1-5524D389E8A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9CF9AF65-850D-49DC-BD49-D30EA3FD5C82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{56298E8A-033B-44A4-BB85-46A9F69AFA2A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AC08E5C-3F3F-42A8-820F-CD9DBAEFAF67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1982F62C-BAE4-4A6C-A778-D1435E0B704E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{2E3B7024-966F-4E07-BAA4-C715E3030359}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.2.9660.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{30260A38-43BA-47E9-A29C-3133723975CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{20F2126B-EE00-4F15-B5D7-0708051E9FFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F241DC98-9BAA-48D4-8AF8-B0C7A764019F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE4BBD5C-BED4-4B35-9190-B0EDB955DB3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96ECD631-B698-4ACF-82D9-64A60FF5C0CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F999DAC1-DE05-4523-94F0-9A8C7113678A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{131B172D-2BCF-4775-95E9-FB1163744521}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0945FBFD-D22F-4094-876B-A7945BC63EF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0305DFE0-68C8-4D71-96A0-AC19B98B06D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD11540F-E797-4386-9B91-45A91676CF2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6459EE6D-B43C-4C26-B97F-96948D9CF8C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B0EB2E-927D-4474-9CAD-8F37A7861985}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.87.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F05F122-B967-4C49-BE64-24293A6A042C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:103.81 GB) (Free:47.79 GB) (46%)
==================== Faulty Device Manager Devices ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2020 10:09:28 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:16:39 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 05:18:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 04:54:30 PM) (Source: DellCommandPowerManager) (EventID: 0) (User: )
Description: Error from DellPowerManager.exe GUI-ATA02
Message: Invalid alert info: 000300000004000700000000
Error: (12/24/2020 10:09:11 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/24/2020 09:53:31 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/21/2020 08:11:35 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (12/20/2020 08:45:34 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-O0BRIV9)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (12/25/2020 10:21:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:21:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:15:02 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:14 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (12/25/2020 10:12:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===================================
Date: 2020-12-25 22:17:43.0180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:40.2750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8400000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:39.8120000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-25 22:17:38.7630000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.11.0 06/03/2020
Motherboard: Dell Inc. 0PKJX9
Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz
Percentage of memory in use: 71%
Total physical RAM: 8068.39 MB
Available physical RAM: 2335.55 MB
Total Virtual: 12676.39 MB
Available Virtual: 5592.57 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:103.81 GB) (Free:47.78 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:883.76 GB) NTFS
\\?\Volume{5e932c26-bcbe-452d-9f32-a72913bff296}\ () (Fixed) (Total:0.79 GB) (Free:0.1 GB) NTFS
\\?\Volume{c3ae85ae-260e-4f51-b2e2-eae918345159}\ (Image) (Fixed) (Total:12.63 GB) (Free:0.17 GB) NTFS
\\?\Volume{2cd1376c-338f-4fcb-a5a9-8f12d8636ba8}\ (DELLSUPPORT) (Fixed) (Total:1.14 GB) (Free:0.55 GB) NTFS
\\?\Volume{83ea36af-1d57-43bc-a0e6-512b11f13703}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.65 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4ACDDEFA)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 4ACDD678)
Partition: GPT.
==================== End of Addition.txt =======================
