VIRY.CZ

Zdravím,
přestala mi fungovat čtečka SD karet v notebooku. NB ji detekuje, ale nepřiřadí ji písmeno vic přiložené printscreeny. Zkoušel jsem odebrat ovladače, aktualizovat je a nic, poté jsem googlil, ale nic mi zatím nepomohlo. Tak je otázka, zda tam nezlobí nějaká neplecha. NB prakticky nepoužívám, prakticky 1x za měsíc, když potřebuji právě něco s SD kartou či USB. USB flashky mi to detekuje a jde na ně zapsat atd., ale to ty SD karty ne.
Byl jsem vyzkoušet v jiném počítači a SD karta fungovala bez problémů byla načtena a šlo na ní zapsat. Pokud SD kartu vložím do mého počítače tak nikoli, pokud ji připojím přes foťák a USB, tak její obsah přečtu, vykopíruju, ale je mi odepřen zápis.
Prosím o konzultaci a děkuji
MZ

Posílám logy z FRST:

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [727896 2014-03-13] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [RemoteControl9] => D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] => D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\Language\Language.exe [50472 2010-09-17] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions -> Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] => D:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] (Sonic Solutions -> )
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\MountPoints2: {e1d538bb-148c-11ea-9fc4-806e6f6e6963} - "E:\start.exe"
HKU\S-1-5-21-2959911540-281103684-2015225718-1004\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [110264 2014-04-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-15] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2011-10-27] (Broadcom Corporation -> Broadcom Corporation.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07D8B917-AC73-4248-8765-AC7BC80A1CD5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {08B4CE97-D35C-49CA-B050-228F587CB1E0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0B9CB892-ED98-468D-BA3C-08FFF0034844} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0D1E5EE3-244B-4243-BC2F-2655D80C2F37} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D0D63B6-2C42-43CE-B6F9-5B41B94147AF} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-29] (Piriform Ltd -> Piriform Ltd)
Task: {205C49F3-4797-4617-B126-D431AC44127D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {2353FA5F-863E-41EB-95D3-C760881420FC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001Core => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-07-16] (Google Inc -> Google Inc.)
Task: {269D39AD-6BFF-4369-AA69-4305FA62BB3B} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {29565001-6A61-46D1-B37D-4F7BC74B5276} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {31170F52-73B6-4263-B417-08102D1E5D85} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F4D80CA-CFC5-4587-9F56-BB572A342037} - System32\Tasks\{D5A61636-A848-4636-891F-45E34EDA2A6E} => "d:\program files\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.41.0.101/cs ... Error=1618
Task: {3FD17475-D9A4-4005-8EF4-5A3245F19A34} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {40A72C69-A3B4-4B68-B345-6D2252C69985} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41EBB14D-A1D3-40C7-AA8A-AACFCCC10C4B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4C70DA56-6207-4B56-870E-D1C5D99E3573} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {58252090-F6EC-4C63-99C6-DDFE02D39AD9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6085BBE2-C4C2-4A89-BD68-7E05599A24F7} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {635CF17D-B027-473F-9636-0A182A15AA13} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {64D4FF18-5BE3-4DD1-BC75-E5D6D8AD217B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {79DBF497-9DDA-4444-AD0B-117BA87149EF} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7D77163D-D63D-4488-8B0F-A49AB2B4A51D} - \PCDEventLauncherTask -> No File <==== ATTENTION
Task: {7EB30B81-76B9-4C1B-B5C6-6A5FD1D0CB5E} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {7F356F8D-5F90-450D-8413-98A398865800} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2959911540-281103684-2015225718-1000 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2021-01-09] (Microsoft Windows -> )
Task: {85F8B8B9-5D22-4DD7-B8C9-EAE68F31C734} - System32\Tasks\{8EEEDCE2-7223-4D43-A6A1-ABB7B2CC65AD} => C:\Windows\system32\pcalua.exe -a "C:\Users\Michal\Local Settings\Application Data\Bundled software uninstaller\biclient.exe" -c /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {89D7855B-415D-47C0-A7A7-F6E17341ECA4} - System32\Tasks\Avast Emergency Update => D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
Task: {8AECC15C-374F-4B53-9595-41C5F96819BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {8AF5A1B2-B6EA-4984-8366-46BF57CD59B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8BF78B81-579C-4C0C-BDCC-49F73464DEDB} - System32\Tasks\{5576DBED-6D18-49DC-A8DC-D26D1874F0E3} => C:\Windows\system32\pcalua.exe -a "D:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "D:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {8D74F1FF-85D5-400B-B78B-1FCB61F2F328} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E0D6AA0-E39C-47BD-B74B-D6DFCAEEFD24} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1741416 2020-11-05] (Avast Software s.r.o. -> Avast Software)
Task: {8E98449B-6B07-4AF2-BEEB-79F2600E8C4B} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {96464673-AE46-451F-9563-5EF3F64548D2} - System32\Tasks\{CD41D0B0-9300-4BD5-AE4A-D22B35394201} => C:\Windows\system32\pcalua.exe -a D:\Download\aawsepersonal.exe -d D:\Download
Task: {96C7631B-5156-4559-A27E-5D3CE2933301} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AC5E0E28-2D2B-46AB-9E51-2F7F6EAF2BA7} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD4BAE8B-3EFD-487C-ADAF-63A8F5F4C20E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {BD05B65E-3B39-4857-9546-A3E93C06A242} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001UA => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-07-16] (Google Inc -> Google Inc.)
Task: {C426CA92-C633-4150-9E43-BF78D77689FF} - System32\Tasks\{83FCF505-109A-4F2F-BA12-B4FFF290AE8E} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe -c -X
Task: {C7278F00-A073-4995-8D21-8670B391CCC2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CBED7E55-D45D-4010-A14F-AA8A46B4F08B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D4130446-D963-4917-8C64-9C14697E467C} - System32\Tasks\Mozilla\Firefox Default Browser Agent CDFCF4B7528A39A6 => D:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {D6810908-2B03-4149-97BF-5CE33958F628} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DCDFF000-8123-4619-8287-49488E2969E1} - System32\Tasks\{A1C5921C-3F77-4845-828C-38D44D475447} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\AppData\Local\Temp\jre-8u181-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {E379C763-F252-48EA-B440-C22D99CF459A} - System32\Tasks\{D05379AE-DC29-4ECA-B704-A88909657A05} => C:\Windows\system32\pcalua.exe -a D:\DELL\Intel_Chipset-Software-Insta_A04_R304291_setup_ZPE.exe -d D:\DELL
Task: {E48B7E07-CFF4-49F8-84D9-5BBF90C458DB} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {EF37CD57-7B7A-4AEB-A826-97A235C16D11} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {F1DDE4C9-3C59-4968-A3ED-F19E31EE73E5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {F2EFBC4B-8BF8-4FA9-8B46-0F6DD5839F0D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F79C3BAB-4899-4451-B686-F222BB9F3656} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F91CAB3E-34D5-479E-804C-0EC7BBEAFDAD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F92841F4-0876-4286-B2C5-C2567D40ED4F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001Core.job => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001UA.job => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{F3B3D983-017C-408F-A3BC-6927F1A8A913}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
======
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-09]

FireFox:
========
FF DefaultProfile: osvq9mm5.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default [2021-01-09]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default\user.js [2014-12-28]
FF Homepage: Mozilla\Firefox\Profiles\osvq9mm5.default -> hxxp://forum.hooligans.cz/
FF Extension: (MEGA) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default\Extensions\firefox@mega.co.nz.xpi [2020-08-16] [UpdateUrl:hxxps://mega.nz/firefox-web-extension-updates.json]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-06-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] (Nokia -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
StartMenuInternet: FIREFOX.EXE - D:\Program Files\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2020-11-18]
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR DefaultSearchURL: Default -> hxxps://www.google.de/search?q={searchTerms}?trackid=sp-006
CHR DefaultSearchKeyword: Default -> google
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=c ... earchTerms}
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-18]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-18]
CHR HKU\S-1-5-21-2959911540-281103684-2015225718-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2014-03-27] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; D:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; D:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
S3 FileZilla Server; D:\Program Files\FileZilla Server\FileZilla Server.exe [742912 2010-10-17] (FileZilla Project) [File not signed]
R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2021-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; D:\Program Files\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518680 2020-11-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
S3 blackberryncm; C:\WINDOWS\System32\DRIVERS\blackberryncm6_AMD64.sys [24576 2014-04-15] (BlackBerry) [File not signed]
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 rimvndis; C:\WINDOWS\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Limited)
R3 RimVSerPort; C:\WINDOWS\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [351968 2019-12-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-12-02] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-09 14:17 - 2021-01-09 14:18 - 000021742 _____ C:\Users\Michal\Desktop\FRST.txt
2021-01-09 14:15 - 2021-01-09 14:17 - 000000000 ____D C:\FRST
2021-01-09 14:10 - 2021-01-09 14:09 - 002282496 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2021-01-09 12:43 - 2021-01-09 12:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-01-09 12:43 - 2021-01-09 12:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-01-09 12:43 - 2021-01-09 12:43 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-09 12:42 - 2021-01-09 12:42 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-01-09 12:42 - 2021-01-09 12:42 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-01-09 12:41 - 2021-01-09 12:41 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-01-09 12:41 - 2021-01-09 12:41 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-01-09 12:41 - 2021-01-09 12:41 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-01-09 12:41 - 2021-01-09 12:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-01-09 12:41 - 2021-01-09 12:41 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-01-09 12:41 - 2021-01-09 12:41 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-01-09 12:40 - 2021-01-09 12:40 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-09 12:40 - 2021-01-09 12:40 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-01-09 11:54 - 2021-01-09 11:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-09 11:08 - 2021-01-09 11:08 - 000001255 _____ C:\Users\Michal\Desktop\ChanSort.lnk
2021-01-09 10:54 - 2021-01-09 10:54 - 000002410 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-09 10:46 - 2021-01-09 10:46 - 006244920 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-09 14:19 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-09 14:11 - 2018-09-05 19:41 - 000000000 ____D C:\Users\Michal\AppData\Local\AVAST Software
2021-01-09 14:07 - 2013-09-26 19:19 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-09 14:03 - 2016-12-07 21:20 - 000000000 ____D C:\Users\Michal\AppData\LocalLow\Mozilla
2021-01-09 13:48 - 2020-07-31 23:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-09 13:48 - 2020-07-31 23:23 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-09 13:47 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-09 13:43 - 2020-07-31 23:43 - 001842280 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-09 13:43 - 2019-12-07 15:43 - 000752236 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-09 13:43 - 2019-12-07 15:43 - 000162774 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-09 13:43 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-09 13:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-09 13:36 - 2020-07-31 23:23 - 000499168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-09 13:32 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-09 13:28 - 2020-07-31 23:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-09 12:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-09 12:56 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-09 12:03 - 2020-07-31 19:55 - 000000000 ___HD C:\$WinREAgent
2021-01-09 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-01-09 11:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-09 11:30 - 2020-07-31 19:48 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 11:30 - 2020-07-31 19:48 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-09 10:54 - 2020-07-31 23:53 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2959911540-281103684-2015225718-1000
2021-01-09 10:54 - 2019-12-02 06:12 - 000000000 ___RD C:\Users\Michal\OneDrive
2021-01-09 10:52 - 2015-11-07 18:06 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-01-09 10:49 - 2020-07-31 23:53 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-09 10:49 - 2020-07-31 23:53 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-09 10:48 - 2020-07-31 23:53 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-09 10:48 - 2020-07-31 23:53 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-09 10:46 - 2019-12-07 10:18 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2021-01-09 10:46 - 2019-12-07 10:18 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2021-01-09 10:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState

==================== Files in the root of some directories ========

2013-10-22 18:29 - 2013-10-23 18:59 - 000001325 _____ () C:\Users\Michal\AppData\Roaming\LiveSupport.exe_log.txt
2013-10-22 18:29 - 2013-10-23 18:59 - 000000092 _____ () C:\Users\Michal\AppData\Roaming\regsvr32.exe_log.txt
2015-06-06 15:00 - 2015-06-06 15:00 - 000007602 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2021
Ran by Michal (09-01-2021 14:24:16)
Running from C:\Users\Michal\Desktop
Windows 10 Pro Version 20H2 19042.685 (X64) (2020-07-31 22:54:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2959911540-281103684-2015225718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2959911540-281103684-2015225718-503 - Limited - Disabled)
Guest (S-1-5-21-2959911540-281103684-2015225718-501 - Limited - Disabled)
Hanka (S-1-5-21-2959911540-281103684-2015225718-1001 - Limited - Enabled) => C:\Users\Hanka
HomeGroupUser$ (S-1-5-21-2959911540-281103684-2015225718-1003 - Limited - Enabled)
Michal (S-1-5-21-2959911540-281103684-2015225718-1000 - Administrator - Enabled) => C:\Users\Michal
UpdatusUser (S-1-5-21-2959911540-281103684-2015225718-1004 - Limited - Enabled) => C:\Users\UpdatusUser
WDAGUtilityAccount (S-1-5-21-2959911540-281103684-2015225718-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - HS Incorporated (massfilter_hs) USB (10/20/2010 2.0.0.8) (HKLM\...\80E97631DA49E8B2E4C5B606C9597BC75EE612F5) (Version: 10/20/2010 2.0.0.8 - HS Incorporated)
Balíček ovladače systému Windows - PANTECH Co., Ltd. (PSKTBUS) USB (06/20/2012 4.0.21.0) (HKLM\...\31F11A15A3058696191A3708600383CAA429752E) (Version: 06/20/2012 4.0.21.0 - PANTECH Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (06/10/2014 2.11.10.0) (HKLM\...\7C7D77F30DA293C8D56A9D5FB8C3E70F4E17DA7F) (Version: 06/10/2014 2.11.10.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssaebus) USB (02/05/2010 5.14.0.0) (HKLM\...\8CDE6EEFC346A059EC210060FC7B7DAA8279D584) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SHARP (shu0bus) USB (08/11/2011 5.28.4.0) (HKLM\...\8A1FC0FFE8E99DF8171E25D8C5AFF587290A67EF) (Version: 08/11/2011 5.28.4.0 - SHARP)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Citroen Update 1.0.5 (HKLM\...\{34f18d20-cd77-5abe-b8da-25524d95050a}) (Version: 1.0.5 - PSA Automobiles SA)
CloneDVD2 (HKLM-x32\...\CloneDVD2) (Version: 2.9.3.1 - Elaborate Bytes)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.5425 - CyberLink Corp.)
DDPB (HKLM-x32\...\{748590DB-44CD-48D2-8585-2496BBFE919F}) (Version: 1.0.9 - DauDen.vn)
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell System Detect (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\9204f5692a8faf3b) (Version: 5.2.0.11 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.)
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
EaseUS Partition Master 9.3.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 5.0 - Poikosoft)
FileZilla Server (remove only) (HKLM-x32\...\FileZilla Server) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
iCareFone for WhatsApp Transfer 2.5.3.132 (HKLM-x32\...\{Tenorshare iCareFone for WhatsApp Transfer}_is1) (Version: 2.5.3.132 - Tenorshare, Inc.)
iMyFone iTransor for WhatsApp 3.9.0.3 (HKLM-x32\...\{BFC593FB-4E14-452E-94C2-75F382A89294}_is1) (Version: 3.9.0.3 - Shenzhen iMyFone Technology Co., Ltd.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 16.5 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: - )
K-Lite Codec Pack 10.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.3 - PandoraTV)
MakeMKV v1.8.13 (HKLM-x32\...\MakeMKV) (Version: v1.8.13 - GuinpinSoft inc)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 24.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 24.0 (x86 cs)) (Version: 24.0 - Mozilla)
Mozilla Firefox 84.0.2 (x64 cs) (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.0 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\MyFreeCodec) (Version: - )
NbuExplorer version 3.0 (HKLM-x32\...\{6C58B3E8-0822-490B-BC94-40CC02A6B37F}_is1) (Version: 3.0 - Petr Vilem)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}) (Version: 3.8.48.0 - Nokia) Hidden
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.)
Ovládací panel NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden
ParadisePoker (HKLM-x32\...\ParadisePoker ) (Version: - Boss Media AB)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.063 - Sonic Solutions) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20072.4 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20072.4 - Samsung Electronics Co., Ltd.)
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TransMate 1.0.20 (HKLM-x32\...\{BB9F354E-3632-4D44-BFBC-06D65FDDD162}_is1) (Version: 1.0.20 - AnyMP4 Studio)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8900 - Broadcom Corporation)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-29] (Apple Inc.) [Startup Task]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-11-05] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2016-01-01] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [Roxio Burn] -> {E8CB9D53-A47A-42B5-9F5B-96B037C9DD4C} => C:\Program Files\Roxio\Roxio Burn\RB_ContextMenu64.dll [2010-11-10] (Sonic Solutions -> TODO: <Company name>)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2016-01-01] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2013-03-11] (NVIDIA Corporation -> )
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2013-09-26 22:15 - 2013-01-23 16:19 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2013-09-26 22:15 - 2013-01-23 16:19 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} hxxp://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: HKLM-x32 {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} hxxps://support.dell.com/systemprofiler/SysProExe.CAB
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [File not signed]

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\dell.com -> dell.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-23 18:33 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2014-09-06 06:57 - 2014-09-08 11:55 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\;D:\Program Files\Roxio\OEM\AudioCore\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2959911540-281103684-2015225718-1004\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Michal\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Connectify Dispatch => C:\Program Files (x86)\Connectify\DispatchUI.exe autorun
MSCONFIG\startupreg: Connectify Hotspot => C:\Program Files (x86)\Connectify\Connectify.exe autorun
MSCONFIG\startupreg: DellSystemDetect => C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
MSCONFIG\startupreg: EaseUS EPM tray => D:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
MSCONFIG\startupreg: KiesAirMessage => D:\Program Files\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPDLR.exe => D:\Program Files\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
MSCONFIG\startupreg: KiesPreload => D:\Program Files\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => D:\Program Files\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: nwiz => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
MSCONFIG\startupreg: RIM PeerManager => "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{075B60FE-934E-4483-8145-AF42091F7DF8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{71E3B6ED-A26E-4798-9D3B-D90CAC94FB3D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{82390445-A92B-4EA7-9B45-5D559754AE39}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8A13538E-B213-4739-9384-9CA162E1A7D1}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{6E123B9F-1448-4B44-8304-D420659CA64E}] => (Allow) D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{570FF78E-F72E-463D-B6D6-56F2B979A3BF}] => (Allow) D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [TCP Query User{9659DE59-2AE1-4B25-8264-7C365A21F941}D:\program files\totalcmd\totalcmd64.exe] => (Allow) D:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{6DCA73DC-D565-4EC0-949B-78D633FBC938}D:\program files\totalcmd\totalcmd64.exe] => (Allow) D:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{576CDBC7-7C4C-474F-99D8-252C2161C21C}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe => No File
FirewallRules: [UDP Query User{59ED6D56-2D97-4829-8BE5-55CD7AFA5071}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe => No File
FirewallRules: [TCP Query User{BA9BA244-6DC6-461A-8A94-C528A48F5BFD}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{8AFF799F-B1C8-41A6-A8D8-E29B41FF06D9}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B8403CBA-6485-4B46-A6A3-9F2F2C8CF621}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{1A366FC6-735B-4AF2-93E4-9955BD2343A5}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2689479-1189-40CA-9094-EE5CA01E9FFD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{92FCAE76-B3D5-4C49-BB13-FC4B99EF4381}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [TCP Query User{431B587B-C91C-4FE7-A93F-8DEC6C594B12}C:\users\michal\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michal\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{44EB7E1F-2BC3-4E8A-AC40-B59BF32B6FFE}C:\users\michal\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michal\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{13767FF9-FBCA-4228-9C5E-8261B94C1F5F}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{D7658D06-5586-423F-AFA6-6021FE4BEB7E}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{862AD49B-C012-4157-B461-66CAF7110C9D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{99D08126-1786-4F81-8059-728CFDEB91FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F10BE42-6C0C-417A-8C3E-C0B20C793DE0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5C19ABCE-2707-41C1-A2BC-F3A7F88C99FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{772FB363-84E4-4114-9B8D-3B9A36F9C0FD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6BC3D8A1-5E8D-4EE2-9AA2-7528664C552E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{78598B38-65F0-41C1-83A3-3C791BC43415}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F78B8DDF-1429-467E-858C-E82FE5B0165B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B2489E4D-89CA-403D-B2A1-E60B2D226A71}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF17BFD1-EB8F-4081-9A9C-CBA87794CCF7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5A4DA87B-5B9C-4CDF-A330-0E01CBB4C804}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DE9AD54F-7F5E-4124-AA07-45DF039F66A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54F2A0D-2553-407B-822A-C8624868C7D0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:60 GB) (Free:24.12 GB) (40%)

==================== Faulty Device Manager Devices ============

Name: Broadcom USH
Description: Broadcom USH
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/09/2021 01:13:23 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/09/2021 01:02:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na RECOVERY, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (11/29/2020 01:16:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (11/29/2020 01:16:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (11/29/2020 01:16:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (11/29/2020 01:16:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (11/29/2020 10:14:44 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DELL6520)
Description: Microsoft.VCLibs.140.00_8wekyb3d8bbwe-2147024893

Error: (11/29/2020 10:14:44 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: DELL6520)
Description: Microsoft.VCLibs.140.00.UWPDesktop_8wekyb3d8bbwe-2147024893


System errors:
=============
Error: (01/09/2021 01:47:18 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/09/2021 01:41:37 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba NVIDIA Update Service Daemon přestala během spouštění reagovat.

Error: (01/09/2021 12:36:23 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR7.

Error: (01/09/2021 11:49:43 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/09/2021 11:49:36 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (01/09/2021 11:49:36 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (01/09/2021 11:49:10 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/09/2021 11:49:10 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2021-01-09 13:52:20.0090000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.9850000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.9560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.9300000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.9040000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.8740000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.8470000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-09 13:52:19.8190000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. A18 06/28/2013
Motherboard: Dell Inc. 0CYF99
Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 90%
Total physical RAM: 3977.01 MB
Available physical RAM: 358.46 MB
Total Virtual: 4313.01 MB
Available Virtual: 256.14 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:60 GB) (Free:24.12 GB) NTFS
Drive d: (DATA) (Fixed) (Total:404.99 GB) (Free:22.23 GB) NTFS

\\?\Volume{401e8dad-26bf-11e3-b915-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:0.73 GB) (Free:0.19 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 442143B9)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=750 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=60 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=405 GB) - (Type=0F Extended)
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.

==================== End of Addition.txt =======================

Zdravím!
Zkuste klik pravým myšítkem na "Počítač">Spravovat>správa disků. Potom klik (opět pravým) na danou čtečku>změnit písmeno jednotky>přidat.

nejde mi tam vybrat jiné písmeno

Klikl jste pravým myšítkem na "nepřiřazený!?

Kliknul jsem pravým na Disk 1 Výměnitelné médium (F:)

Když kliknu pravým na nepřiřazený, tak je tam toto viz obrázek, což neodpovídalo Vašemu popisu a nevím co tady vybrat

Je v té čtečce nějaká karta? Pokud ano, není naformátovaná a nemá vytvořen souborový systém. Pak je nutné postupovat jako u každého nového disku. Vytvořit partition, zformátovat a pak by se měl objevit standardní svazek.

Jak jsem psal ta karta v jiném NB funguje, jsou na ní data, která přečtu, smažu či zapíšu.

Když tu kartu dám do foťáku a připojím foťák USB kabelem k NB, tak data také vidím a mohu je zkopírovat na HDD, ale nedovolí mi to na kartu zapsat či tam cokkoliv smazat.

Když dám tu kartu do TV, abych zálohoval settings, tak také TV kartu vidí a zapíše na ní.

Zkoušel jsem i jiné karty, microSD v adaptéru a stejný případ. Problém je tedy v v NB a její interní čtečce. Drivery jsem přeinstaloval a nepomohlo.

Díval jsem se do Google a nedává mi to nějaké jadnoduché řešení. Většnou se doporučuje reinstal systému, nebo nějakou live Linuxovou distribuci a přes ní s kartou pracovat. Viz: https://www.google.com/search?client=fi ... kartu+v+pc .

jj to jsem už pročetl vše

v logáchm že by mi tam něco dělalo neplechu teda vidět není?

Zkusíme vyčistit. Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Moc si od toho ale neslibuji, problémy s identifikací úložišť většinou s malware nesouvisí.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2021-01-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-09-2021
# Duration: 00:00:09
# OS: Windows 10 Pro
# Cleaned: 37
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\NEUROWISE
Deleted C:\Program Files (x86)\OPTIMIZER PRO
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Deleted C:\ProgramData\apn
Deleted C:\Users\Hanka\AppData\Roaming\Seznam.cz
Deleted C:\Users\Michal\AppData\Roaming\Seznam.cz
Deleted C:\Users\Michal\AppData\Roaming\eType

***** [ Files ] *****

Deleted C:\Users\Michal\AppData\Roaming\LiveSupport.exe_log.txt
Deleted C:\Users\Michal\AppData\Roaming\regsvr32.exe_log.txt

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\1ClickDownload
Deleted HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Deleted HKCU\Software\BI
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Deleted HKCU\Software\Myfree Codec
Deleted HKCU\Software\Seznam.cz
Deleted HKCU\Software\Softonic
Deleted HKCU\Software\SweetIM
Deleted HKLM\Software\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Deleted HKLM\Software\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Deleted HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DellSystemDetect
Deleted HKLM\Software\Wow6432Node\Myfree Codec
Deleted HKLM\Software\Wow6432Node\SweetIM
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Wow6432Node\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Deleted HKLM\Software\Wow6432Node\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\Update neurowise
Deleted HKU\.DEFAULT\Software\AskPartnerNetwork
Deleted HKU\S-1-5-18\Software\AskPartnerNetwork
Deleted HKU\S-1-5-21-2959911540-281103684-2015225718-1004\Software\Myfree Codec

***** [ Chromium (and derivatives) ] *****

Deleted Seznam pro Chrome - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Deleted Seznam pro Chrome - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5826 octets] - [09/01/2021 22:44:24]
AdwCleaner[S01].txt - [5887 octets] - [09/01/2021 22:57:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

tak se mi to asi podařilo vyřešit.. googlil jsem drivery a ikdyž jsem je měl odebrané, tak někde ve WIN furt zůstávaly a když se je konečně podařilo znovu odebrat (asi podesaté), tak najednou čtečka funguje

dělaly to driver O2Micro OZ600XXX Memory card ... jsou pryč a místo nich něco nativního pro karty SD vyhovující standardu SDA

OK, ale mohli bychom ještě dočistit, kdy jsme už začali. Dejte nové logy FRST+Addition.

Jasně, posílám

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Ran by Michal (administrator) on DELL6520 (Dell Inc. Latitude E6520) (10-01-2021 12:12:08)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal & UpdatusUser
Platform: Windows 10 Pro Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(CyberLink -> CyberLink Corp.) D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PDVD9Serv.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ecb9604542bb4ba6\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) D:\Program Files\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Sonic Solutions -> ) D:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [727896 2014-03-13] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [RemoteControl9] => D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] => D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\Language\Language.exe [50472 2010-09-17] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions -> Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] => D:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] (Sonic Solutions -> )
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\MountPoints2: {e1d538bb-148c-11ea-9fc4-806e6f6e6963} - "E:\start.exe"
HKU\S-1-5-21-2959911540-281103684-2015225718-1004\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [110264 2014-04-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2011-10-27] (Broadcom Corporation -> Broadcom Corporation.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07D8B917-AC73-4248-8765-AC7BC80A1CD5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {08B4CE97-D35C-49CA-B050-228F587CB1E0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0B9CB892-ED98-468D-BA3C-08FFF0034844} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0D1E5EE3-244B-4243-BC2F-2655D80C2F37} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D0D63B6-2C42-43CE-B6F9-5B41B94147AF} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-29] (Piriform Ltd -> Piriform Ltd)
Task: {205C49F3-4797-4617-B126-D431AC44127D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {2353FA5F-863E-41EB-95D3-C760881420FC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001Core => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-07-16] (Google Inc -> Google Inc.)
Task: {269D39AD-6BFF-4369-AA69-4305FA62BB3B} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {29565001-6A61-46D1-B37D-4F7BC74B5276} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {31170F52-73B6-4263-B417-08102D1E5D85} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F4D80CA-CFC5-4587-9F56-BB572A342037} - System32\Tasks\{D5A61636-A848-4636-891F-45E34EDA2A6E} => "d:\program files\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.41.0.101/cs ... Error=1618
Task: {3FD17475-D9A4-4005-8EF4-5A3245F19A34} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {40A72C69-A3B4-4B68-B345-6D2252C69985} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41EBB14D-A1D3-40C7-AA8A-AACFCCC10C4B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4C70DA56-6207-4B56-870E-D1C5D99E3573} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {58252090-F6EC-4C63-99C6-DDFE02D39AD9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6085BBE2-C4C2-4A89-BD68-7E05599A24F7} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {635CF17D-B027-473F-9636-0A182A15AA13} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {64D4FF18-5BE3-4DD1-BC75-E5D6D8AD217B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {79DBF497-9DDA-4444-AD0B-117BA87149EF} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7D77163D-D63D-4488-8B0F-A49AB2B4A51D} - \PCDEventLauncherTask -> No File <==== ATTENTION
Task: {7EB30B81-76B9-4C1B-B5C6-6A5FD1D0CB5E} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {7F356F8D-5F90-450D-8413-98A398865800} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2959911540-281103684-2015225718-1000 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2021-01-09] (Microsoft Windows -> )
Task: {85F8B8B9-5D22-4DD7-B8C9-EAE68F31C734} - System32\Tasks\{8EEEDCE2-7223-4D43-A6A1-ABB7B2CC65AD} => C:\Windows\system32\pcalua.exe -a "C:\Users\Michal\Local Settings\Application Data\Bundled software uninstaller\biclient.exe" -c /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {89D7855B-415D-47C0-A7A7-F6E17341ECA4} - System32\Tasks\Avast Emergency Update => D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
Task: {8AECC15C-374F-4B53-9595-41C5F96819BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {8AF5A1B2-B6EA-4984-8366-46BF57CD59B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8BF78B81-579C-4C0C-BDCC-49F73464DEDB} - System32\Tasks\{5576DBED-6D18-49DC-A8DC-D26D1874F0E3} => C:\Windows\system32\pcalua.exe -a "D:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "D:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {8D74F1FF-85D5-400B-B78B-1FCB61F2F328} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E0D6AA0-E39C-47BD-B74B-D6DFCAEEFD24} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1741416 2020-11-05] (Avast Software s.r.o. -> Avast Software)
Task: {8E98449B-6B07-4AF2-BEEB-79F2600E8C4B} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {96464673-AE46-451F-9563-5EF3F64548D2} - System32\Tasks\{CD41D0B0-9300-4BD5-AE4A-D22B35394201} => C:\Windows\system32\pcalua.exe -a D:\Download\aawsepersonal.exe -d D:\Download
Task: {96C7631B-5156-4559-A27E-5D3CE2933301} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AC5E0E28-2D2B-46AB-9E51-2F7F6EAF2BA7} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD4BAE8B-3EFD-487C-ADAF-63A8F5F4C20E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {BD05B65E-3B39-4857-9546-A3E93C06A242} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001UA => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-07-16] (Google Inc -> Google Inc.)
Task: {C426CA92-C633-4150-9E43-BF78D77689FF} - System32\Tasks\{83FCF505-109A-4F2F-BA12-B4FFF290AE8E} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe -c -X
Task: {C7278F00-A073-4995-8D21-8670B391CCC2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CBED7E55-D45D-4010-A14F-AA8A46B4F08B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D4130446-D963-4917-8C64-9C14697E467C} - System32\Tasks\Mozilla\Firefox Default Browser Agent CDFCF4B7528A39A6 => D:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {D6810908-2B03-4149-97BF-5CE33958F628} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DCDFF000-8123-4619-8287-49488E2969E1} - System32\Tasks\{A1C5921C-3F77-4845-828C-38D44D475447} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\AppData\Local\Temp\jre-8u181-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {E379C763-F252-48EA-B440-C22D99CF459A} - System32\Tasks\{D05379AE-DC29-4ECA-B704-A88909657A05} => C:\Windows\system32\pcalua.exe -a D:\DELL\Intel_Chipset-Software-Insta_A04_R304291_setup_ZPE.exe -d D:\DELL
Task: {E48B7E07-CFF4-49F8-84D9-5BBF90C458DB} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {EF37CD57-7B7A-4AEB-A826-97A235C16D11} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {F1DDE4C9-3C59-4968-A3ED-F19E31EE73E5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {F2EFBC4B-8BF8-4FA9-8B46-0F6DD5839F0D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F79C3BAB-4899-4451-B686-F222BB9F3656} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F91CAB3E-34D5-479E-804C-0EC7BBEAFDAD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F92841F4-0876-4286-B2C5-C2567D40ED4F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001Core.job => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959911540-281103684-2015225718-1001UA.job => C:\Users\Hanka\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{F3B3D983-017C-408F-A3BC-6927F1A8A913}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
======
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-10]

FireFox:
========
FF DefaultProfile: osvq9mm5.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default [2021-01-10]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default\user.js [2014-12-28]
FF Homepage: Mozilla\Firefox\Profiles\osvq9mm5.default -> hxxp://forum.hooligans.cz/
FF Extension: (MEGA) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\osvq9mm5.default\Extensions\firefox@mega.co.nz.xpi [2020-08-16] [UpdateUrl:hxxps://mega.nz/firefox-web-extension-updates.json]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-06-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] (Nokia -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
StartMenuInternet: FIREFOX.EXE - D:\Program Files\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2020-11-18]
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR DefaultSearchURL: Default -> hxxps://www.google.de/search?q={searchTerms}?trackid=sp-006
CHR DefaultSearchKeyword: Default -> google
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=c ... earchTerms}
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-18]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-18]
CHR HKU\S-1-5-21-2959911540-281103684-2015225718-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2014-03-27] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; D:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; D:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
S3 FileZilla Server; D:\Program Files\FileZilla Server\FileZilla Server.exe [742912 2010-10-17] (FileZilla Project) [File not signed]
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-06-26] (pdfforge GmbH -> pdfforge GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2021-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; D:\Program Files\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518680 2020-11-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-11-05] (Avast Software s.r.o. -> AVAST Software)
S3 blackberryncm; C:\WINDOWS\System32\DRIVERS\blackberryncm6_AMD64.sys [24576 2014-04-15] (BlackBerry) [File not signed]
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 rimvndis; C:\WINDOWS\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Limited)
R3 RimVSerPort; C:\WINDOWS\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [351968 2019-12-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-12-02] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Users\Michal\AppData\Local\Temp\tmpBDE0.tmp [14544 2021-01-10] (Noriyuki MIYAZAKI -> OpenLibSys.org) <==== ATTENTION
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-10 12:11 - 2021-01-10 12:05 - 002281472 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2021-01-10 12:03 - 2021-01-10 12:13 - 000025265 _____ C:\Users\Michal\Desktop\FRST.txt
2021-01-10 12:03 - 2021-01-10 12:03 - 000000000 ___HD C:\$AV_ASW
2021-01-10 12:03 - 2021-01-10 12:03 - 000000000 ____D C:\Users\Michal\Desktop\FRST-OlderVersion
2021-01-10 11:08 - 2021-01-10 11:09 - 000109368 _____ C:\Users\Aneta\AppData\Local\GDIPFONTCACHEV1.DAT
2021-01-10 10:09 - 2021-01-10 10:09 - 000000000 ____D C:\Users\Aneta\AppData\Local\CEF
2021-01-10 02:22 - 2021-01-10 02:22 - 000000020 ___SH C:\Users\Hanka\ntuser.ini
2021-01-10 02:22 - 2021-01-10 02:22 - 000000000 ____D C:\Users\Hanka\AppData\Local\Comms
2021-01-10 02:21 - 2021-01-10 02:21 - 000000000 ____D C:\Users\Aneta\AppData\Local\Comms
2021-01-10 01:53 - 2021-01-10 01:53 - 000000000 ____D C:\Users\Aneta\AppData\Roaming\Avast Software
2021-01-10 01:51 - 2021-01-10 01:51 - 000000000 ____D C:\Users\Aneta\AppData\Local\PlaceholderTileLogoFolder
2021-01-10 01:50 - 2021-01-10 01:51 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2959911540-281103684-2015225718-1175
2021-01-10 01:50 - 2021-01-10 01:51 - 000000000 ___RD C:\Users\Aneta\OneDrive
2021-01-10 01:49 - 2021-01-10 11:59 - 000000000 ____D C:\Users\Aneta\AppData\LocalLow\Mozilla
2021-01-10 01:49 - 2021-01-10 01:49 - 000000000 ____D C:\Users\Aneta\AppData\Roaming\Mozilla
2021-01-10 01:49 - 2021-01-10 01:49 - 000000000 ____D C:\Users\Aneta\AppData\Local\Mozilla
2021-01-10 01:48 - 2021-01-10 01:48 - 000000000 ____D C:\Users\Aneta\AppData\Roaming\Roxio
2021-01-10 01:47 - 2021-01-10 01:51 - 000002407 _____ C:\Users\Aneta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-10 01:47 - 2021-01-10 01:50 - 000000000 ____D C:\Users\Aneta
2021-01-10 01:47 - 2021-01-10 01:47 - 000000000 ____D C:\Users\Aneta\AppData\Local\Publishers
2021-01-10 01:47 - 2010-11-21 08:16 - 000000000 ____D C:\Users\Aneta\AppData\Roaming\Media Center Programs
2021-01-10 01:46 - 2021-01-10 01:46 - 000000000 ___RD C:\Users\Aneta\3D Objects
2021-01-10 01:46 - 2021-01-10 01:46 - 000000000 ____D C:\Users\Aneta\AppData\Local\VirtualStore
2021-01-10 01:46 - 2021-01-10 01:46 - 000000000 ____D C:\Users\Aneta\AppData\Local\Google
2021-01-10 01:45 - 2021-01-10 10:25 - 000000000 ____D C:\Users\Aneta\AppData\Local\Packages
2021-01-10 01:45 - 2021-01-10 01:46 - 000000000 ____D C:\Users\Aneta\AppData\Local\ConnectedDevicesPlatform
2021-01-10 01:45 - 2021-01-10 01:45 - 000000020 ___SH C:\Users\Aneta\ntuser.ini
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Šablony
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Soubory cookie
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Poslední
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Okolní tiskárny
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Okolní síť
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Nabídka Start
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Dokumenty
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Documents\Obrázky
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Documents\Hudba
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Documents\Filmy
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\Data aplikací
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 _SHDL C:\Users\Aneta\AppData\Local\Data aplikací
2021-01-10 01:45 - 2021-01-10 01:45 - 000000000 ____D C:\Users\Aneta\AppData\Roaming\Adobe
2021-01-10 01:11 - 2021-01-10 01:12 - 000000000 ____D C:\WINDOWS\TempInst
2021-01-10 00:46 - 2021-01-10 00:48 - 000000000 ____D C:\ProgramData\BSD
2021-01-09 23:41 - 2021-01-09 23:41 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-01-09 22:42 - 2021-01-09 23:01 - 000000000 ____D C:\AdwCleaner
2021-01-09 22:41 - 2021-01-09 22:41 - 008447152 _____ (Malwarebytes) C:\Users\Michal\Desktop\adwcleaner_8.0.8.exe
2021-01-09 14:15 - 2021-01-10 12:13 - 000000000 ____D C:\FRST
2021-01-09 12:43 - 2021-01-09 12:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-01-09 12:43 - 2021-01-09 12:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-01-09 12:43 - 2021-01-09 12:43 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-09 12:42 - 2021-01-09 12:42 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-01-09 12:42 - 2021-01-09 12:42 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-01-09 12:42 - 2021-01-09 12:42 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-01-09 12:41 - 2021-01-09 12:41 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-01-09 12:41 - 2021-01-09 12:41 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-01-09 12:41 - 2021-01-09 12:41 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-01-09 12:41 - 2021-01-09 12:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-01-09 12:41 - 2021-01-09 12:41 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-01-09 12:41 - 2021-01-09 12:41 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-01-09 12:40 - 2021-01-09 12:40 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-09 12:40 - 2021-01-09 12:40 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-01-09 12:40 - 2021-01-09 12:40 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-01-09 11:54 - 2021-01-09 11:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-09 11:08 - 2021-01-09 11:08 - 000001255 _____ C:\Users\Michal\Desktop\ChanSort.lnk
2021-01-09 10:54 - 2021-01-09 10:54 - 000002410 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-09 10:46 - 2021-01-09 10:46 - 006244920 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-10 12:11 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-10 12:08 - 2020-07-31 23:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-10 12:08 - 2020-07-31 23:23 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-10 12:07 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-01-10 12:03 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-10 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-10 12:02 - 2016-12-07 21:20 - 000000000 ____D C:\Users\Michal\AppData\LocalLow\Mozilla
2021-01-10 10:38 - 2013-09-26 19:12 - 000000384 _____ C:\WINDOWS\ODBC.INI
2021-01-10 10:09 - 2013-09-26 19:19 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-10 10:06 - 2013-09-26 19:02 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-10 02:23 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-10 02:23 - 2019-12-02 00:15 - 000000000 ____D C:\Users\Hanka\AppData\Local\Packages
2021-01-10 02:22 - 2020-07-31 23:29 - 000000000 ____D C:\Users\Hanka
2021-01-10 02:22 - 2019-12-02 00:15 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-10 02:22 - 2019-12-02 00:15 - 000000000 ___RD C:\Users\Hanka\3D Objects
2021-01-10 02:21 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-10 01:12 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-10 01:00 - 2013-09-26 21:13 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-01-10 00:46 - 2009-07-14 03:34 - 000000562 _____ C:\WINDOWS\win.ini
2021-01-09 23:32 - 2020-06-08 19:46 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2021-01-09 22:40 - 2020-07-31 23:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-09 21:27 - 2020-07-31 19:48 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 21:27 - 2020-07-31 19:48 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-09 15:56 - 2013-09-29 19:20 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 15:56 - 2013-09-29 19:20 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-09 14:11 - 2018-09-05 19:41 - 000000000 ____D C:\Users\Michal\AppData\Local\AVAST Software
2021-01-09 13:43 - 2020-07-31 23:43 - 001842280 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-09 13:43 - 2019-12-07 15:43 - 000752236 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-09 13:43 - 2019-12-07 15:43 - 000162774 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-09 13:36 - 2020-07-31 23:23 - 000499168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-09 13:32 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-09 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-09 12:56 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-09 12:03 - 2020-07-31 19:55 - 000000000 ___HD C:\$WinREAgent
2021-01-09 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-01-09 11:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-09 10:54 - 2020-07-31 23:53 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2959911540-281103684-2015225718-1000
2021-01-09 10:54 - 2019-12-02 06:12 - 000000000 ___RD C:\Users\Michal\OneDrive
2021-01-09 10:52 - 2015-11-07 18:06 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-01-09 10:49 - 2020-07-31 23:53 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-09 10:49 - 2020-07-31 23:53 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-09 10:48 - 2020-07-31 23:53 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-09 10:48 - 2020-07-31 23:53 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-09 10:46 - 2019-12-07 10:18 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2021-01-09 10:46 - 2019-12-07 10:18 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2021-01-09 10:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState

==================== Files in the root of some directories ========

2015-06-06 15:00 - 2015-06-06 15:00 - 000007602 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Michal (10-01-2021 12:15:36)
Running from C:\Users\Michal\Desktop
Windows 10 Pro Version 20H2 19042.685 (X64) (2020-07-31 22:54:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2959911540-281103684-2015225718-500 - Administrator - Disabled)
Aneta (S-1-5-21-2959911540-281103684-2015225718-1175 - Limited - Enabled) => C:\Users\Aneta
DefaultAccount (S-1-5-21-2959911540-281103684-2015225718-503 - Limited - Disabled)
Guest (S-1-5-21-2959911540-281103684-2015225718-501 - Limited - Disabled)
Hanka (S-1-5-21-2959911540-281103684-2015225718-1001 - Limited - Enabled) => C:\Users\Hanka
HomeGroupUser$ (S-1-5-21-2959911540-281103684-2015225718-1003 - Limited - Enabled)
Michal (S-1-5-21-2959911540-281103684-2015225718-1000 - Administrator - Enabled) => C:\Users\Michal
UpdatusUser (S-1-5-21-2959911540-281103684-2015225718-1004 - Limited - Enabled) => C:\Users\UpdatusUser
WDAGUtilityAccount (S-1-5-21-2959911540-281103684-2015225718-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - HS Incorporated (massfilter_hs) USB (10/20/2010 2.0.0.8) (HKLM\...\80E97631DA49E8B2E4C5B606C9597BC75EE612F5) (Version: 10/20/2010 2.0.0.8 - HS Incorporated)
Balíček ovladače systému Windows - PANTECH Co., Ltd. (PSKTBUS) USB (06/20/2012 4.0.21.0) (HKLM\...\31F11A15A3058696191A3708600383CAA429752E) (Version: 06/20/2012 4.0.21.0 - PANTECH Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (06/10/2014 2.11.10.0) (HKLM\...\7C7D77F30DA293C8D56A9D5FB8C3E70F4E17DA7F) (Version: 06/10/2014 2.11.10.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssaebus) USB (02/05/2010 5.14.0.0) (HKLM\...\8CDE6EEFC346A059EC210060FC7B7DAA8279D584) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SHARP (shu0bus) USB (08/11/2011 5.28.4.0) (HKLM\...\8A1FC0FFE8E99DF8171E25D8C5AFF587290A67EF) (Version: 08/11/2011 5.28.4.0 - SHARP)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Citroen Update 1.0.5 (HKLM\...\{34f18d20-cd77-5abe-b8da-25524d95050a}) (Version: 1.0.5 - PSA Automobiles SA)
CloneDVD2 (HKLM-x32\...\CloneDVD2) (Version: 2.9.3.1 - Elaborate Bytes)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.5425 - CyberLink Corp.)
DDPB (HKLM-x32\...\{748590DB-44CD-48D2-8585-2496BBFE919F}) (Version: 1.0.9 - DauDen.vn)
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell System Detect (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\9204f5692a8faf3b) (Version: 5.2.0.11 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.)
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
EaseUS Partition Master 9.3.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 5.0 - Poikosoft)
FileZilla Server (remove only) (HKLM-x32\...\FileZilla Server) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
iCareFone for WhatsApp Transfer 2.5.3.132 (HKLM-x32\...\{Tenorshare iCareFone for WhatsApp Transfer}_is1) (Version: 2.5.3.132 - Tenorshare, Inc.)
iMyFone iTransor for WhatsApp 3.9.0.3 (HKLM-x32\...\{BFC593FB-4E14-452E-94C2-75F382A89294}_is1) (Version: 3.9.0.3 - Shenzhen iMyFone Technology Co., Ltd.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 16.5 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: - )
K-Lite Codec Pack 10.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.3 - PandoraTV)
MakeMKV v1.8.13 (HKLM-x32\...\MakeMKV) (Version: v1.8.13 - GuinpinSoft inc)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 24.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 24.0 (x86 cs)) (Version: 24.0 - Mozilla)
Mozilla Firefox 84.0.2 (x64 cs) (HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.0 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NbuExplorer version 3.0 (HKLM-x32\...\{6C58B3E8-0822-490B-BC94-40CC02A6B37F}_is1) (Version: 3.0 - Petr Vilem)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}) (Version: 3.8.48.0 - Nokia) Hidden
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
Ovládací panel NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden
ParadisePoker (HKLM-x32\...\ParadisePoker ) (Version: - Boss Media AB)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.063 - Sonic Solutions) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20072.4 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20072.4 - Samsung Electronics Co., Ltd.)
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TransMate 1.0.20 (HKLM-x32\...\{BB9F354E-3632-4D44-BFBC-06D65FDDD162}_is1) (Version: 1.0.20 - AnyMP4 Studio)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8900 - Broadcom Corporation)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-29] (Apple Inc.) [Startup Task]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.8.12113.0_x64__8wekyb3d8bbwe [2021-01-10] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2016-01-01] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [Roxio Burn] -> {E8CB9D53-A47A-42B5-9F5B-96B037C9DD4C} => C:\Program Files\Roxio\Roxio Burn\RB_ContextMenu64.dll [2010-11-10] (Sonic Solutions -> TODO: <Company name>)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2016-01-01] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2013-03-11] (NVIDIA Corporation -> )
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2013-09-26 22:15 - 2013-01-23 16:19 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2013-09-26 22:15 - 2013-01-23 16:19 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} hxxp://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: HKLM-x32 {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} hxxps://support.dell.com/systemprofiler/SysProExe.CAB
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [File not signed]

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2959911540-281103684-2015225718-1000\...\dell.com -> dell.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-23 18:33 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2014-09-06 06:57 - 2014-09-08 11:55 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\;D:\Program Files\Roxio\OEM\AudioCore\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2959911540-281103684-2015225718-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2959911540-281103684-2015225718-1004\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Michal\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Connectify Dispatch => C:\Program Files (x86)\Connectify\DispatchUI.exe autorun
MSCONFIG\startupreg: Connectify Hotspot => C:\Program Files (x86)\Connectify\Connectify.exe autorun
MSCONFIG\startupreg: EaseUS EPM tray => D:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
MSCONFIG\startupreg: KiesAirMessage => D:\Program Files\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPDLR.exe => D:\Program Files\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
MSCONFIG\startupreg: KiesPreload => D:\Program Files\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => D:\Program Files\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: nwiz => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
MSCONFIG\startupreg: RIM PeerManager => "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{075B60FE-934E-4483-8145-AF42091F7DF8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{71E3B6ED-A26E-4798-9D3B-D90CAC94FB3D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{82390445-A92B-4EA7-9B45-5D559754AE39}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8A13538E-B213-4739-9384-9CA162E1A7D1}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{6E123B9F-1448-4B44-8304-D420659CA64E}] => (Allow) D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{570FF78E-F72E-463D-B6D6-56F2B979A3BF}] => (Allow) D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [TCP Query User{9659DE59-2AE1-4B25-8264-7C365A21F941}D:\program files\totalcmd\totalcmd64.exe] => (Allow) D:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{6DCA73DC-D565-4EC0-949B-78D633FBC938}D:\program files\totalcmd\totalcmd64.exe] => (Allow) D:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{576CDBC7-7C4C-474F-99D8-252C2161C21C}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe => No File
FirewallRules: [UDP Query User{59ED6D56-2D97-4829-8BE5-55CD7AFA5071}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe => No File
FirewallRules: [TCP Query User{BA9BA244-6DC6-461A-8A94-C528A48F5BFD}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{8AFF799F-B1C8-41A6-A8D8-E29B41FF06D9}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B8403CBA-6485-4B46-A6A3-9F2F2C8CF621}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{1A366FC6-735B-4AF2-93E4-9955BD2343A5}D:\program files\mozilla firefox\firefox.exe] => (Block) D:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2689479-1189-40CA-9094-EE5CA01E9FFD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{92FCAE76-B3D5-4C49-BB13-FC4B99EF4381}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [TCP Query User{431B587B-C91C-4FE7-A93F-8DEC6C594B12}C:\users\michal\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michal\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{44EB7E1F-2BC3-4E8A-AC40-B59BF32B6FFE}C:\users\michal\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michal\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{13767FF9-FBCA-4228-9C5E-8261B94C1F5F}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{D7658D06-5586-423F-AFA6-6021FE4BEB7E}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{99D08126-1786-4F81-8059-728CFDEB91FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F10BE42-6C0C-417A-8C3E-C0B20C793DE0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5C19ABCE-2707-41C1-A2BC-F3A7F88C99FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{772FB363-84E4-4114-9B8D-3B9A36F9C0FD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6BC3D8A1-5E8D-4EE2-9AA2-7528664C552E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{78598B38-65F0-41C1-83A3-3C791BC43415}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F78B8DDF-1429-467E-858C-E82FE5B0165B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B2489E4D-89CA-403D-B2A1-E60B2D226A71}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF17BFD1-EB8F-4081-9A9C-CBA87794CCF7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5A4DA87B-5B9C-4CDF-A330-0E01CBB4C804}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DE9AD54F-7F5E-4124-AA07-45DF039F66A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54F2A0D-2553-407B-822A-C8624868C7D0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CB5CD028-17C3-4E95-91A1-08AF3DBDB997}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:60 GB) (Free:24.11 GB) (40%)

==================== Faulty Device Manager Devices ============

Name: Řadič velkokapacitního paměťového zařízení
Description: Řadič velkokapacitního paměťového zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Broadcom USH
Description: Broadcom USH
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/10/2021 12:07:01 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/10/2021 12:07:01 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/10/2021 12:06:59 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/10/2021 12:06:59 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/10/2021 10:06:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program YourPhone.exe verze 1.20112.72.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 12ec

Čas spuštění: 01d6e72f8f1cb36b

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20112.72.0_x64__8wekyb3d8bbwe\YourPhone.exe

ID hlášení: ddd0e8bf-4a29-406b-8c81-1451bcf8810e

Úplný název balíčku s chybou: Microsoft.YourPhone_1.20112.72.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (01/10/2021 02:11:35 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/10/2021 02:11:35 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/10/2021 01:47:34 AM) (Source: ESENT) (EventID: 522) (User: )
Description: StartMenuExperienceHost (11796,P,98) TILEREPOSITORYS-1-5-21-2959911540-281103684-2015225718-1175: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (01/10/2021 10:09:32 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba NVIDIA Update Service Daemon přestala během spouštění reagovat.

Error: (01/10/2021 02:29:46 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/10/2021 02:29:23 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/10/2021 02:29:22 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/10/2021 02:29:21 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/10/2021 02:29:20 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/10/2021 02:26:31 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/10/2021 02:25:23 AM) (Source: DCOM) (EventID: 10010) (User: DELL6520)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2021-01-10 12:12:19.7870000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.7600000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.7360000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.7110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.6860000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.6590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.6340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-10 12:12:19.6020000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. A22 09/13/2018
Motherboard: Dell Inc. 0CYF99
Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 61%
Total physical RAM: 3977.01 MB
Available physical RAM: 1511.65 MB
Total Virtual: 3993.01 MB
Available Virtual: 1567.23 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:60 GB) (Free:24.11 GB) NTFS
Drive d: (DATA) (Fixed) (Total:404.99 GB) (Free:21.98 GB) NTFS

\\?\Volume{401e8dad-26bf-11e3-b915-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:0.73 GB) (Free:0.19 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 442143B9)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=750 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=60 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=405 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================