prosím o kontrolu

[hakub]

Zdravím,prosím o kontrolu dlouho najíždí system cca 5 min

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-01-2021
Ran by Administrator (administrator) on LENOVO-PC (LENOVO 20382) (19-01-2021 08:21:13)
Running from C:\Users\Administrator\OneDrive\Plocha
Loaded Profiles: vlastimil & Administrator
Platform: Windows 10 Home Version 2004 19041.746 (X64) Language: Angličtina (Spojené státy)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <6>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe <2>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe <2>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\current\Teams.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlrmdr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-18] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EB67AF6-73D3-42ED-841B-0B71C324739E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {15837D38-1333-458A-987C-0841C9D873C0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\111d861d-8e48-4040-bdaa-4954e17c63dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {2E1CC902-5877-4E26-9A17-66ED181E5EBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5333424 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A4BF2B2-4F6C-4BAE-990D-C29118E51217} - System32\Tasks\Avast Software\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [1741416 2020-10-18] (Avast Software s.r.o. -> Avast Software)
Task: {3C916FA2-A20F-43E7-9EDF-52A4273B1701} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {49C634A4-5356-4512-9A73-4B7D0F26B38C} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {67E65602-6505-4A14-84DD-050B334A5CE2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C909DFF-E9EB-419E-83FC-B9B9C3D484AB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {6D06564D-14E9-4CF2-A9E1-4941918EBFCD} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\416c049b-1a95-4423-a040-33b5c824a2f9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {8EFE1DE1-1EBE-40CF-815E-75E3F15CD084} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [56136 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {9D725B5E-095B-4FFB-86D3-5AFBF703F5A2} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2786032 2014-01-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {B4FF0D2C-8D12-4658-893A-EC9DCBE1C80E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CD0969CC-FFB9-4973-8BEB-099D37E266B0} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {D2CA828F-3134-4A29-9B2F-0C7A0DA014A1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2d78fbd7-a0c3-4af3-b73d-5ac5a581bda9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {D6393FFF-8967-4219-AD23-171E16329614} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4ba71d6b-0658-4659-9176-7f5b591b65b4 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {DA8A6752-14E6-4BB1-B86D-3726E01EACB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5333424 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA53730E-DF71-4DE5-A91F-6556D3BF86C8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FA49C18B-41E8-45A5-B437-196CE4C7BC1B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDFAC187-7709-42CC-B8FD-F7B8FCA7F670} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d7ce7466-c43d-4f58-9aa3-10d0cc5bcb58}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-2756002567-295290169-1842266776-1001 -> hxxp://seznam.cz/

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2021-01-19]
CHR Notifications: Default -> hxxps://www.chance.cz
CHR HomePage: Default -> hxxps://seznam.cz/
CHR StartupUrls: Default -> "chrome://newtab/"
CHR DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
CHR Extension: (Překladač Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-01-18]
CHR Extension: (Prezentace) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-18]
CHR Extension: (Dokumenty) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-18]
CHR Extension: (Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-18]
CHR Extension: (OneTab) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2021-01-18]
CHR Extension: (Avast Passwords) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2021-01-18]
CHR Extension: (Convertio) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-01-18]
CHR Extension: (Tabulky) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-18]
CHR Extension: (Word Online) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2021-01-18]
CHR Extension: (Full Screen Weather) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2021-01-18]
CHR Extension: (YouTube Flash Video Player) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fldkdmkgnlbehfgeifjpjabmandnchpe [2021-01-18]
CHR Extension: (Pass Strength Meter) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gahnebecgllcaakcojhgndipnamdlghe [2021-01-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-18]
CHR Extension: (Uložit na Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2021-01-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-01-18]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2021-01-18]
CHR Extension: (Netpanel) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2021-01-18]
CHR Extension: (Webcam Toy) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2021-01-18]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-01-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-18]
CHR Extension: (Office) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2021-01-18]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-18]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [36936 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208808 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332944 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2021-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42568 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176528 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [522616 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109064 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84640 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851392 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469040 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214936 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [325056 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [338880 2018-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-01-2021
Ran by Administrator (19-01-2021 08:36:08)
Running from C:\Users\Administrator\OneDrive\Plocha
Windows 10 Home Version 2004 19041.746 (X64) (2021-01-18 18:25:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2756002567-295290169-1842266776-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2756002567-295290169-1842266776-503 - Limited - Disabled)
Guest (S-1-5-21-2756002567-295290169-1842266776-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2756002567-295290169-1842266776-1003 - Limited - Enabled)
vlastimil (S-1-5-21-2756002567-295290169-1842266776-1001 - Limited - Enabled) => C:\Users\vkubi_000
WDAGUtilityAccount (S-1-5-21-2756002567-295290169-1842266776-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13530.20316 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.78 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.28779 - Microsoft Corporation)
Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 1.1.0.10 - )

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.3242.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-500_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-500_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Office.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2756002567-295290169-1842266776-1001\Control Panel\Desktop\\Wallpaper -> c:\users\vkubi_000\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg
HKU\S-1-5-21-2756002567-295290169-1842266776-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{59F7CDA9-749F-45B6-9554-5463E86EDC2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{50054D3A-4E8C-4D7A-A8D1-BA5FAEFF01FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ACAC67CC-EC2E-49B8-9FFE-64DCBCE1DF5A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8D771187-842A-4F66-9CAA-13D4C41766F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8BDFE07D-B4F0-4113-A49F-2F5C163C2589}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{10E7E12A-EDBF-4C46-B183-69228F5F76BE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AFC2C5E5-0F4B-4976-9F23-F7F1BC99FE21}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{396DA30D-AD89-4DCF-9F41-6F455569F1A8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{60F69392-0F96-41F4-9A22-32C5D934DA2C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{913CBE53-F677-4428-9E92-BF3775325FF8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:423.1 GB) (Free:302.48 GB) (71%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/18/2021 10:41:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, A system shutdown is in progress.
.

Error: (01/18/2021 10:41:21 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, A system shutdown is in progress.
]

Error: (01/18/2021 10:29:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.76.0.8269 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 7d4

Čas spuštění: 01d6ede03279581d

Čas ukončení: 52

Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe

ID hlášení: 4ba2906c-0570-4faa-ac2b-a05d4af33131

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.VCLibs.140.00_8wekyb3d8bbwe-2147024893

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.VCLibs.140.00.UWPDesktop_8wekyb3d8bbwe-2147024893

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.UI.Xaml.2.4_8wekyb3d8bbwe-2147024893

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.UI.Xaml.2.3_8wekyb3d8bbwe-2147024893

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.NET.Native.Runtime.2.2_8wekyb3d8bbwe-2147024893


System errors:
=============
Error: (01/19/2021 07:36:44 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Security Intelligence Update for Microsoft Defender Antivirus - KB2267602 (Version 1.329.2429.0).

Error: (01/18/2021 10:41:13 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Unavailable za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (01/18/2021 10:41:13 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Unavailable za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (01/18/2021 10:41:05 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/18/2021 10:41:05 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/18/2021 10:41:05 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/18/2021 10:41:04 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/18/2021 10:41:04 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2021-01-18 21:28:16.6790000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.317.1926.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17100.2
Kód chyby: 0x8024001e
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:
===================================

Date: 2021-01-19 08:39:55.9250000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:26:50.5970000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:43.7510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:40.0240000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:33.6320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:32.2940000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:11.7270000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 08:25:05.9300000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 9CCN30WW(V2.08) 11/26/2014
Motherboard: LENOVO Lenovo B50-30
Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 90%
Total physical RAM: 3978.19 MB
Available physical RAM: 364.67 MB
Total Virtual: 5941.76 MB
Available Virtual: 977.1 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:423.1 GB) (Free:302.48 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:13.33 GB) NTFS

\\?\Volume{c487d510-5913-47bc-998b-e89f03103264}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{8ff18cbd-f313-48ce-b03f-40033e7eec1a}\ () (Fixed) (Total:0.84 GB) (Free:0.38 GB) NTFS
\\?\Volume{3e91e73a-2cbd-4472-bcb4-10cdff330a34}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{e8427acf-6140-4386-8702-87f78dceefe3}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{27a78a8f-e282-42b7-857b-1eb57ffcf149}\ (PBR_DRV) (Fixed) (Total:13.49 GB) (Free:2.96 GB) NTFS
\\?\Volume{1bda7093-b1d7-4fb9-b45c-657eb6026153}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3ACB66DE)

Partition: GPT.

==================== End of Addition.txt =======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[hakub]

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.0
# -------------------------------
# Build: 01-11-2021
# Database: 2021-01-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-19-2021
# Duration: 00:00:09
# OS: Windows 10 Home
# Cleaned: 12
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outbyte
Deleted C:\Users\Public\Documents\Downloaded Installers

***** [ Files ] *****

Deleted C:\Users\vkubi_000\Desktop\DriverToolkitInstaller.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.LenovoEnergyManager Folder C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\ENERGY MANAGER
Deleted Preinstalled.LenovoEnergyManager Folder C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\ENERGY MANAGER
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\vkubi_000\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Deleted Preinstalled.LenovoSettings Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SETTINGS
Deleted Preinstalled.LenovoUpdate Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO UPDATES


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2589 octets] - [19/01/2021 11:08:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[hakub]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-01-2021
Ran by vlastimil (administrator) on LENOVO-PC (LENOVO 20382) (19-01-2021 16:57:00)
Running from C:\Users\vkubi_000\Downloads
Loaded Profiles: vlastimil & Administrator
Platform: Windows 10 Home Version 2004 19041.746 (X64) Language: Angličtina (Spojené státy)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <6>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe <2>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe <2>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe <2>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-18] (Google LLC -> Google LLC)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar947.lnk [2021-01-19]
ShortcutTarget: Sidebar947.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EB67AF6-73D3-42ED-841B-0B71C324739E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E1CC902-5877-4E26-9A17-66ED181E5EBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5333424 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A4BF2B2-4F6C-4BAE-990D-C29118E51217} - System32\Tasks\Avast Software\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [1741416 2020-10-18] (Avast Software s.r.o. -> Avast Software)
Task: {3A7B4657-A20A-4452-8056-8AE2AE3AC26F} - \Lenovo\ImController\TimeBasedEvents\a1f2b411-5a3a-49bc-994e-5758bdfa3355 -> No File <==== ATTENTION
Task: {3C916FA2-A20F-43E7-9EDF-52A4273B1701} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {49C634A4-5356-4512-9A73-4B7D0F26B38C} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {67E65602-6505-4A14-84DD-050B334A5CE2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C909DFF-E9EB-419E-83FC-B9B9C3D484AB} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {8EFE1DE1-1EBE-40CF-815E-75E3F15CD084} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {9D725B5E-095B-4FFB-86D3-5AFBF703F5A2} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2786032 2014-01-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {B4FF0D2C-8D12-4658-893A-EC9DCBE1C80E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {B7A02AC9-7E81-40B2-A973-C8FEAAF84C3C} - \Lenovo\ImController\TimeBasedEvents\72ea24c5-d652-47a9-872b-8615828614e8 -> No File <==== ATTENTION
Task: {C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CD0969CC-FFB9-4973-8BEB-099D37E266B0} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {DA8A6752-14E6-4BB1-B86D-3726E01EACB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5333424 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E432C5D0-BA4B-4DBD-9BB7-66B7E30E2031} - \Lenovo\ImController\TimeBasedEvents\addd2e26-5f95-471c-b2b7-b3bbeb89360f -> No File <==== ATTENTION
Task: {E7B142A3-254D-4910-919A-8EA4C9E72EB5} - \Lenovo\ImController\TimeBasedEvents\4e3144bc-8d76-4ac4-b53f-c858c6418793 -> No File <==== ATTENTION
Task: {EA53730E-DF71-4DE5-A91F-6556D3BF86C8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FA49C18B-41E8-45A5-B437-196CE4C7BC1B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDFAC187-7709-42CC-B8FD-F7B8FCA7F670} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d7ce7466-c43d-4f58-9aa3-10d0cc5bcb58}: [DhcpNameServer] 10.0.0.138

Edge:
=======
DownloadDir: C:\Users\vkubi_000\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2756002567-295290169-1842266776-1001 -> hxxp://seznam.cz/

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default [2021-01-19]
CHR Notifications: Default -> hxxps://www.tipsport.cz
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR Extension: (Prezentace) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-18]
CHR Extension: (Dokumenty) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-18]
CHR Extension: (Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2021-01-18]
CHR Extension: (YouTube) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-18]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2021-01-18]
CHR Extension: (Tabulky) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-18]
CHR Extension: (Gmail) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
CHR Extension: (Chrome Media Router) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-18]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-19] (Malwarebytes Inc -> Malwarebytes)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [36936 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208808 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332944 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2021-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42568 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176528 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [522616 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109064 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84640 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851392 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469040 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214936 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [325056 2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-19] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-01-19] (Malwarebytes Inc -> Malwarebytes)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [338880 2018-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-19 16:57 - 2021-01-19 16:59 - 000020735 _____ C:\Users\vkubi_000\Downloads\FRST.txt
2021-01-19 16:55 - 2021-01-19 16:55 - 000001533 _____ C:\Users\vkubi_000\Desktop\FRST64 – zástupce.lnk
2021-01-19 16:54 - 2021-01-19 16:54 - 002295808 _____ (Farbar) C:\Users\vkubi_000\Downloads\FRST64.exe
2021-01-19 16:52 - 2021-01-19 16:58 - 000000000 ____D C:\FRST
2021-01-19 16:38 - 2021-01-19 16:38 - 000000000 ___HD C:\$AV_AVG
2021-01-19 16:31 - 2021-01-19 16:31 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-19 15:39 - 2021-01-19 15:39 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Comms
2021-01-19 15:32 - 2021-01-19 15:32 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Sun
2021-01-19 15:28 - 2021-01-19 15:28 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\.expertlotto
2021-01-19 15:06 - 2021-01-19 15:12 - 000000000 ____D C:\Users\Administrator\Loterie
2021-01-19 15:04 - 2021-01-19 15:04 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\.expertlotto
2021-01-19 15:03 - 2021-01-19 15:03 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Expert Lotto 5.lnk
2021-01-19 15:02 - 2021-01-19 15:04 - 000000000 ____D C:\Users\Administrator\.expertlotto-installer
2021-01-19 15:02 - 2021-01-19 15:03 - 000000000 ____D C:\Program Files (x86)\Expert Lotto 5
2021-01-19 15:00 - 2021-01-19 15:00 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Sun
2021-01-19 15:00 - 2021-01-19 15:00 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Sun
2021-01-19 15:00 - 2021-01-19 14:59 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-01-19 14:59 - 2021-01-19 14:59 - 000000000 ____D C:\ProgramData\Oracle
2021-01-19 14:59 - 2021-01-19 14:59 - 000000000 ____D C:\Program Files (x86)\Java
2021-01-19 14:21 - 2021-01-19 14:25 - 000000000 ____D C:\Users\Administrator\AppData\Local\Clipboarder
2021-01-19 14:20 - 2021-01-19 15:49 - 000000000 ____D C:\Users\Administrator\AppData\Local\Sidebar7
2021-01-19 11:54 - 2021-01-19 11:54 - 000000000 ____D C:\Program Files\TapinRadio
2021-01-19 11:51 - 2021-01-19 11:51 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\GHISLER
2021-01-19 11:51 - 2021-01-19 11:51 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\GHISLER
2021-01-19 11:06 - 2021-01-19 11:11 - 000000000 ____D C:\AdwCleaner
2021-01-19 11:06 - 2021-01-19 11:06 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-19 11:06 - 2021-01-19 11:06 - 000002032 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-19 11:06 - 2021-01-19 11:06 - 000002032 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-01-19 11:06 - 2021-01-19 11:06 - 000000000 ____D C:\Users\Administrator\AppData\Local\mbam
2021-01-19 11:05 - 2021-01-19 11:05 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-19 11:05 - 2021-01-19 11:04 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-19 11:05 - 2021-01-19 11:04 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-01-19 11:04 - 2021-01-19 11:04 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-19 11:03 - 2021-01-19 11:03 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-19 07:40 - 2021-01-19 07:40 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\AVG
2021-01-19 07:40 - 2021-01-19 07:40 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\CEF
2021-01-19 02:46 - 2021-01-19 02:46 - 000000000 ____D C:\WINDOWS\OEM
2021-01-19 02:44 - 2021-01-18 22:26 - 000000000 ____D C:\WINDOWS\Panther
2021-01-19 02:27 - 2021-01-18 19:25 - 000000000 ____D C:\Windows.old
2021-01-19 02:25 - 2021-01-19 02:26 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-01-19 02:20 - 2021-01-19 02:20 - 000000000 ____D C:\ProgramData\ssh
2021-01-19 02:05 - 2021-01-19 02:05 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-19 02:04 - 2021-01-19 02:04 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-01-19 02:04 - 2021-01-19 02:04 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-19 02:04 - 2021-01-19 02:04 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-19 02:04 - 2021-01-19 02:04 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-19 02:04 - 2021-01-19 02:04 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-19 02:04 - 2021-01-19 02:04 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-19 02:04 - 2021-01-19 02:04 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-01-19 02:04 - 2021-01-19 02:04 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-19 02:04 - 2021-01-19 02:04 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-19 02:04 - 2021-01-19 02:04 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-19 02:04 - 2021-01-19 02:04 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-19 02:03 - 2021-01-19 02:03 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-01-19 02:03 - 2021-01-19 02:03 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-19 02:03 - 2021-01-19 02:03 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-19 02:03 - 2021-01-19 02:03 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-01-19 02:03 - 2021-01-19 02:03 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-19 02:03 - 2021-01-19 02:03 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-19 02:03 - 2021-01-19 02:03 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-19 02:03 - 2021-01-19 02:03 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-19 02:03 - 2021-01-19 02:03 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-01-19 02:02 - 2021-01-19 02:02 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-19 02:02 - 2021-01-19 02:02 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-19 02:02 - 2021-01-19 02:02 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-01-19 02:02 - 2021-01-19 02:02 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-01-19 02:02 - 2021-01-19 02:02 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-19 02:01 - 2021-01-19 02:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-19 02:01 - 2021-01-19 02:01 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-01-19 02:01 - 2021-01-19 02:01 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-19 02:01 - 2021-01-19 02:01 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-19 02:01 - 2021-01-19 02:01 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-19 02:01 - 2021-01-19 02:01 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-19 02:01 - 2021-01-19 02:01 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-01-19 02:01 - 2021-01-19 02:01 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-01-19 02:01 - 2021-01-19 02:01 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-19 02:00 - 2021-01-19 02:00 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-19 02:00 - 2021-01-19 02:00 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-19 02:00 - 2021-01-19 02:00 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-01-19 02:00 - 2021-01-19 02:00 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-01-19 02:00 - 2021-01-19 02:00 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-01-19 02:00 - 2021-01-19 02:00 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-01-19 01:59 - 2021-01-19 01:59 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-19 01:59 - 2021-01-19 01:59 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-01-19 01:59 - 2021-01-19 01:59 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-01-19 01:58 - 2021-01-19 01:58 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-19 01:58 - 2021-01-19 01:58 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-01-19 01:58 - 2021-01-19 01:58 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-01-19 01:58 - 2021-01-19 01:58 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-19 01:58 - 2021-01-19 01:58 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-01-19 01:58 - 2021-01-19 01:58 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-19 01:58 - 2021-01-19 01:58 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-19 01:58 - 2021-01-19 01:58 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-01-19 01:58 - 2021-01-19 01:58 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-01-19 01:57 - 2021-01-19 01:57 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-01-19 01:57 - 2021-01-19 01:57 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-01-19 01:56 - 2021-01-19 01:56 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-01-19 01:56 - 2021-01-19 01:56 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-19 01:56 - 2021-01-19 01:56 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-19 01:56 - 2021-01-19 01:56 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-01-19 01:56 - 2021-01-19 01:56 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-19 01:56 - 2021-01-19 01:56 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-19 01:56 - 2021-01-19 01:56 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-19 01:56 - 2021-01-19 01:56 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-01-19 01:55 - 2021-01-19 01:55 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-19 01:55 - 2021-01-19 01:55 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-01-19 01:55 - 2021-01-19 01:55 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-01-19 01:55 - 2021-01-19 01:55 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-01-19 01:55 - 2021-01-19 01:55 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-01-19 01:55 - 2021-01-19 01:55 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-01-19 01:33 - 2021-01-19 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-01-19 01:33 - 2021-01-19 01:33 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-01-19 01:33 - 2021-01-19 01:33 - 000000000 ____D C:\Program Files\MSBuild
2021-01-19 01:33 - 2021-01-19 01:33 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-01-19 01:33 - 2021-01-19 01:33 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-01-19 01:29 - 2019-10-15 22:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-01-19 01:29 - 2019-04-19 03:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-01-19 01:28 - 2021-01-19 01:28 - 000296964 _____ C:\WINDOWS\system32\perfi005.dat
2021-01-19 01:28 - 2021-01-19 01:28 - 000038778 _____ C:\WINDOWS\system32\perfd005.dat
2021-01-19 01:28 - 2021-01-19 01:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2021-01-19 01:28 - 2021-01-19 01:28 - 000000000 ____D C:\WINDOWS\system32\cs
2021-01-19 01:28 - 2021-01-18 21:37 - 000717828 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-19 01:28 - 2021-01-18 21:37 - 000144990 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-19 01:13 - 2021-01-19 11:11 - 000000000 ____D C:\WINDOWS\Lenovo
2021-01-19 01:13 - 2021-01-18 18:12 - 000000000 ____D C:\Program Files\Synaptics
2021-01-19 01:07 - 2021-01-19 01:07 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-01-18 22:33 - 2021-01-18 22:33 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2021-01-18 22:32 - 2021-01-18 22:32 - 000002082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk
2021-01-18 22:32 - 2021-01-18 22:32 - 000002070 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2021-01-18 22:32 - 2021-01-18 22:32 - 000002070 _____ C:\ProgramData\Desktop\AVG AntiVirus FREE.lnk
2021-01-18 22:32 - 2021-01-18 22:32 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\AVG
2021-01-18 22:31 - 2021-01-18 22:31 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2021-01-18 22:29 - 2021-01-18 22:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2021-01-18 22:28 - 2021-01-19 07:29 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2021-01-18 22:27 - 2021-01-18 22:28 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2021-01-18 22:27 - 2021-01-18 22:28 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2021-01-18 22:27 - 2021-01-18 22:28 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000522616 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000341128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2021-01-18 22:27 - 2021-01-18 22:27 - 000247952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000176528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000109064 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000097424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000084640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000042568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000016832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2021-01-18 22:27 - 2021-01-18 22:27 - 000000000 ____D C:\Program Files\Common Files\AVG
2021-01-18 22:27 - 2021-01-18 22:26 - 000851392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2021-01-18 22:27 - 2021-01-18 22:26 - 000332944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2021-01-18 22:27 - 2021-01-18 22:26 - 000208808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2021-01-18 22:27 - 2021-01-18 22:26 - 000036936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2021-01-18 22:25 - 2021-01-18 22:25 - 000000000 ____D C:\Program Files\AVG
2021-01-18 22:24 - 2021-01-19 15:55 - 000000000 ____D C:\ProgramData\AVG
2021-01-18 22:23 - 2021-01-19 16:32 - 000000000 ____D C:\Program Files\CCleaner
2021-01-18 22:23 - 2021-01-18 22:23 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-18 22:23 - 2021-01-18 22:23 - 000002892 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-18 22:23 - 2021-01-18 22:23 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-01-18 22:23 - 2021-01-18 22:23 - 000000874 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-01-18 22:20 - 2021-01-18 22:21 - 030584912 _____ (Piriform Software Ltd) C:\Users\vkubi_000\Downloads\ccsetup576.exe
2021-01-18 21:56 - 2021-01-18 21:56 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2021-01-18 21:53 - 2021-01-19 15:17 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-01-18 21:53 - 2021-01-18 21:53 - 000000000 ____D C:\Program Files\Microsoft Games
2021-01-18 21:39 - 2021-01-18 21:41 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2756002567-295290169-1842266776-1001
2021-01-18 21:38 - 2021-01-18 21:38 - 000002415 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-18 21:38 - 2021-01-18 21:38 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Teams
2021-01-18 21:37 - 2021-01-18 21:37 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-01-18 21:36 - 2021-01-18 21:39 - 000000000 ____D C:\Users\Administrator\AppData\Local\SquirrelTemp
2021-01-18 21:34 - 2021-01-19 11:11 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Lenovo
2021-01-18 21:34 - 2021-01-18 21:34 - 000002395 _____ C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-18 21:34 - 2021-01-18 21:34 - 000002387 _____ C:\Users\vkubi_000\Desktop\Microsoft Teams.lnk
2021-01-18 21:34 - 2021-01-18 21:34 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Teams
2021-01-18 21:33 - 2021-01-18 21:34 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\SquirrelTemp
2021-01-18 21:19 - 2021-01-18 21:21 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Google
2021-01-18 20:47 - 2021-01-18 20:47 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2021-01-18 20:44 - 2021-01-18 20:44 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-01-18 20:44 - 2021-01-18 20:44 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-01-18 20:42 - 2021-01-18 20:42 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-01-18 20:17 - 2021-01-18 20:44 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-18 20:17 - 2021-01-18 20:17 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-01-18 20:11 - 2021-01-18 20:11 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-01-18 20:03 - 2021-01-18 20:07 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2021-01-18 20:03 - 2021-01-18 20:03 - 000002330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-18 20:03 - 2021-01-18 20:03 - 000002289 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-18 20:03 - 2021-01-18 20:03 - 000002289 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-01-18 20:03 - 2021-01-18 20:03 - 000000000 ____D C:\Program Files\Google
2021-01-18 20:02 - 2021-01-18 20:02 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-18 20:02 - 2021-01-18 20:02 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-18 20:01 - 2021-01-18 20:02 - 000000000 ____D C:\Program Files (x86)\Google
2021-01-18 19:51 - 2021-01-18 19:51 - 000000000 ____D C:\Users\Administrator\AppData\Local\OneDrive
2021-01-18 19:51 - 2021-01-18 19:51 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2021-01-18 19:42 - 2021-01-18 19:42 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2021-01-18 19:37 - 2021-01-18 20:42 - 000000000 ____D C:\Users\Administrator\AppData\Local\PlaceholderTileLogoFolder
2021-01-18 19:36 - 2021-01-18 21:37 - 000000000 ___RD C:\Users\Administrator\OneDrive
2021-01-18 19:36 - 2021-01-18 19:37 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2756002567-295290169-1842266776-500
2021-01-18 19:34 - 2021-01-18 19:42 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2021-01-18 19:34 - 2021-01-18 19:34 - 000001450 _____ C:\Users\vkubi_000\Desktop\Microsoft Edge.lnk
2021-01-18 19:34 - 2021-01-18 19:34 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\MicrosoftEdge
2021-01-18 19:34 - 2021-01-18 19:34 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-01-18 19:32 - 2021-01-18 19:32 - 000000000 ____D C:\Users\Administrator\AppData\Local\Publishers
2021-01-18 19:31 - 2021-01-18 19:31 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Publishers
2021-01-18 19:30 - 2021-01-18 20:01 - 000000000 ____D C:\ProgramData\Packages
2021-01-18 19:27 - 2021-01-18 19:27 - 000000000 ___RD C:\Users\Administrator\3D Objects
2021-01-18 19:26 - 2021-01-19 16:33 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2021-01-18 19:26 - 2021-01-18 21:35 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2021-01-18 19:26 - 2021-01-18 20:43 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2021-01-18 19:26 - 2021-01-18 20:04 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Packages
2021-01-18 19:26 - 2021-01-18 19:26 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2021-01-18 19:26 - 2021-01-18 19:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-01-18 19:26 - 2021-01-18 19:26 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Adobe
2021-01-18 19:26 - 2021-01-18 19:26 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\VirtualStore
2021-01-18 19:26 - 2021-01-18 19:26 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2021-01-18 19:25 - 2021-01-18 19:27 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\ConnectedDevicesPlatform
2021-01-18 19:25 - 2021-01-18 19:25 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2021-01-18 19:25 - 2021-01-18 19:25 - 000000020 ___SH C:\Users\vkubi_000\ntuser.ini
2021-01-18 18:53 - 2021-01-18 18:53 - 000036008 _____ C:\Users\vkubi_000\Desktop\Removed Apps.html
2021-01-18 18:51 - 2021-01-18 21:37 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-18 18:48 - 2021-01-18 18:48 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-01-18 18:28 - 2021-01-19 16:43 - 000000000 ____D C:\Users\Administrator
2021-01-18 18:28 - 2021-01-18 21:40 - 000002384 _____ C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-18 18:28 - 2021-01-18 19:37 - 000002398 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-18 18:28 - 2021-01-18 19:26 - 000000000 ____D C:\Users\vkubi_000
2021-01-18 18:12 - 2021-01-19 16:29 - 000000000 ____D C:\ProgramData\Synaptics
2021-01-18 18:12 - 2021-01-18 18:12 - 000003088 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2021-01-18 18:12 - 2021-01-18 18:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_wbf_vfs_lvcmn_01_11_00.Wdf
2021-01-18 18:12 - 2021-01-18 18:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2021-01-18 18:12 - 2021-01-18 18:12 - 000000000 ____D C:\WINDOWS\Intel
2021-01-18 18:11 - 2021-01-18 18:11 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-01-18 18:11 - 2021-01-18 18:11 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-01-18 18:10 - 2021-01-18 18:10 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-01-18 18:10 - 2021-01-18 18:10 - 000000000 ____D C:\Program Files\Realtek
2021-01-18 18:10 - 2021-01-18 18:10 - 000000000 ____D C:\Program Files\Intel
2021-01-18 18:10 - 2015-09-09 07:27 - 000074224 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2021-01-18 18:10 - 2015-09-09 07:27 - 000070640 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2021-01-18 18:09 - 2020-07-15 19:38 - 000104776 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll
2021-01-18 18:07 - 2021-01-19 11:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-01-18 18:07 - 2021-01-19 11:11 - 000000000 ____D C:\ProgramData\Lenovo
2021-01-18 18:06 - 2021-01-19 16:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-18 18:06 - 2021-01-18 18:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-01-18 17:48 - 2021-01-19 11:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-18 17:48 - 2021-01-18 21:30 - 000438944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-16 17:04 - 2021-01-16 17:04 - 018583552 _____ C:\Users\vkubi_000\Desktop\RemoteDesktop_1.2.1525.0_x64.msi
2021-01-16 15:32 - 2021-01-16 15:32 - 000000000 ____H C:\Users\vkubi_000\Documents\Default.rdp
2021-01-15 18:39 - 2021-01-15 18:39 - 000009045 _____ C:\Users\vkubi_000\Desktop\vyůůčt.xlsx
2021-01-15 09:21 - 2021-01-15 09:22 - 000022403 _____ C:\Users\vkubi_000\Desktop\Hesla Chrome.csv
2021-01-13 17:47 - 2021-01-13 17:47 - 000010720 _____ C:\Users\vkubi_000\Desktop\korunka.xlsx
2021-01-13 17:45 - 2021-01-13 17:45 - 000010718 _____ C:\Users\vkubi_000\Documents\korunka.xlsx
2021-01-13 16:16 - 2021-01-13 16:16 - 000186810 _____ C:\Users\vkubi_000\Desktop\Podaci_listek_avizovani_vpis.pdf
2021-01-12 17:02 - 2021-01-13 17:36 - 000000716 _____ C:\Users\vkubi_000\Desktop\kio2.txt
2021-01-11 12:08 - 2021-01-13 17:44 - 000010876 _____ C:\Users\vkubi_000\Desktop\PLATBY Z ROK 2020.xlsx
2021-01-11 10:47 - 2021-01-11 10:47 - 000171843 _____ C:\Users\vkubi_000\Downloads\Oznámení_změny_nájmu_15614.pdf
2021-01-07 11:42 - 2021-01-07 11:42 - 000000000 ____D C:\Users\vkubi_000\.QtWebEngineProcess
2021-01-07 11:42 - 2021-01-07 11:42 - 000000000 ____D C:\Users\vkubi_000\.LSC
2020-12-28 12:27 - 2020-12-28 12:27 - 044969400 _____ (Mediatek) C:\Users\vkubi_000\Desktop\wifi-USB.exe
2020-12-22 14:20 - 2021-01-19 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack
2020-12-22 14:17 - 2020-12-22 14:17 - 027354152 _____ C:\Users\vkubi_000\Desktop\8GadgetPackSetup.msi
2020-12-20 19:20 - 2021-01-18 18:52 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2020-12-20 19:17 - 2020-12-20 21:26 - 000000000 ____D C:\Users\vkubi_000\Desktop\USB VIN71

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-19 16:44 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-19 16:29 - 2020-07-28 13:15 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-19 16:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-19 16:28 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-19 15:00 - 2019-02-23 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-01-19 14:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files\Windows Sidebar
2021-01-19 14:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files (x86)\Windows Sidebar
2021-01-19 11:54 - 2019-02-16 15:00 - 000000000 ____D C:\Users\vkubi_000\TapinRadio
2021-01-19 11:11 - 2019-01-02 05:04 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-01-19 11:11 - 2015-06-27 05:55 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-01-19 11:11 - 2015-06-27 05:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-01-19 11:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-19 07:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-01-19 02:41 - 2020-12-16 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2021-01-19 02:41 - 2020-11-09 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2021-01-19 02:41 - 2020-07-24 03:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater
2021-01-19 02:41 - 2020-07-03 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rozpisy pro loterie 3.01
2021-01-19 02:41 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-01-19 02:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-01-19 02:41 - 2019-01-03 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TapinRadio
2021-01-19 02:41 - 2019-01-03 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-01-19 02:41 - 2015-06-27 05:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2021-01-19 02:41 - 2015-06-27 05:42 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2021-01-19 02:27 - 2020-12-16 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-01-19 02:27 - 2020-05-17 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-01-19 02:27 - 2020-05-06 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\linguatec
2021-01-19 02:27 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-01-19 02:20 - 2019-12-07 10:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-19 02:20 - 2019-12-07 10:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-01-19 02:20 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-19 02:16 - 2019-12-07 10:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-01-19 02:16 - 2019-12-07 10:52 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-01-19 01:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-01-19 01:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-01-19 01:31 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\OCR
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-01-19 01:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-01-19 01:28 - 2019-12-07 10:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-01-18 22:31 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-18 22:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-18 21:40 - 2019-01-02 03:08 - 000000000 ___RD C:\Users\vkubi_000\OneDrive
2021-01-18 21:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-18 20:44 - 2020-09-30 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-18 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-01-18 20:42 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-18 19:58 - 2019-01-02 02:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-18 19:53 - 2020-06-22 06:39 - 000000000 ___HD C:\OneDriveTemp
2021-01-18 19:48 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-18 19:48 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-01-18 19:48 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-18 19:30 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-18 19:28 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-18 19:26 - 2019-02-14 14:59 - 000000000 ____D C:\Intel
2021-01-18 19:26 - 2019-01-02 21:12 - 000000000 ___RD C:\Users\vkubi_000\3D Objects
2021-01-18 19:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-01-18 19:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-01-18 19:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-18 18:52 - 2020-11-23 05:35 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-01-18 18:52 - 2019-09-08 09:16 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\inPixio
2021-01-18 18:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-18 18:11 - 2015-06-27 04:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2021-01-18 18:07 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-18 11:18 - 2020-11-23 05:00 - 000000000 ____D C:\Users\vkubi_000\Desktop\WORD
2021-01-18 11:17 - 2020-12-18 16:16 - 000000000 ____D C:\Users\vkubi_000\Desktop\Nová složka
2021-01-15 18:40 - 2019-01-02 12:32 - 000000000 ____D C:\Users\vkubi_000\Documents\Soubory aplikace Outlook
2021-01-12 19:02 - 2020-01-23 11:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-12 19:02 - 2020-01-23 11:00 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2021-01-12 16:53 - 2020-11-28 19:34 - 000002011 _____ C:\Users\vkubi_000\Desktop\kio1.txt
2021-01-11 10:52 - 2019-08-28 02:27 - 000000000 ____D C:\Users\vkubi_000\AppData\LocalLow\Mozilla

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2021
Ran by vlastimil (19-01-2021 17:08:12)
Running from C:\Users\vkubi_000\Downloads
Windows 10 Home Version 2004 19041.746 (X64) (2021-01-18 18:25:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2756002567-295290169-1842266776-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2756002567-295290169-1842266776-503 - Limited - Disabled)
Guest (S-1-5-21-2756002567-295290169-1842266776-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2756002567-295290169-1842266776-1003 - Limited - Enabled)
vlastimil (S-1-5-21-2756002567-295290169-1842266776-1001 - Administrator - Enabled) => C:\Users\vkubi_000
WDAGUtilityAccount (S-1-5-21-2756002567-295290169-1842266776-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Disabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

8GadgetPack (HKLM-x32\...\{2C6DC07C-5D68-4E32-B6C6-EF5F24DA9FDF}) (Version: 33.0.0 - 8GadgetPack.net)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13530.20316 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.78 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.28779 - Microsoft Corporation)
Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 1.1.0.10 - )

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.3242.0_x64__8wekyb3d8bbwe [2021-01-18] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-500_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-500_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-01-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-19] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-01-19 14:19 - 2012-05-19 06:16 - 000083456 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Sidebar\sbdrop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-18] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\Control Panel\Desktop\\Wallpaper -> c:\users\vkubi_000\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg
HKU\S-1-5-21-2756002567-295290169-1842266776-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar947.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{59F7CDA9-749F-45B6-9554-5463E86EDC2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{50054D3A-4E8C-4D7A-A8D1-BA5FAEFF01FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ACAC67CC-EC2E-49B8-9FFE-64DCBCE1DF5A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8D771187-842A-4F66-9CAA-13D4C41766F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8BDFE07D-B4F0-4113-A49F-2F5C163C2589}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{10E7E12A-EDBF-4C46-B183-69228F5F76BE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AFC2C5E5-0F4B-4976-9F23-F7F1BC99FE21}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{396DA30D-AD89-4DCF-9F41-6F455569F1A8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{60F69392-0F96-41F4-9A22-32C5D934DA2C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{913CBE53-F677-4428-9E92-BF3775325FF8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

19-01-2021 11:09:44 AdwCleaner_BeforeCleaning_19/01/2021_11:09:43

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/19/2021 04:37:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 19.1.2021.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2aa4

Čas spuštění: 01d6ee78c93bb867

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\Administrator\OneDrive\Plocha\FRST64.exe

ID hlášení: 1d180fed-19e1-4988-9169-6df8abcd18f8

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-process

Error: (01/19/2021 03:45:12 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, A system shutdown is in progress.
.

Error: (01/19/2021 03:45:12 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, A system shutdown is in progress.
]

Error: (01/19/2021 11:53:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Trefik15_64.exe verze 15.26.1.11 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 22b8

Čas spuštění: 01d6ee5128c8a2d6

Čas ukončení: 65

Cesta k aplikaci: C:\Trefik15\Trefik15_64.exe

ID hlášení: 8b535668-3888-46eb-8c74-04de91c8c10a

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (01/18/2021 10:41:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, A system shutdown is in progress.
.

Error: (01/18/2021 10:41:21 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, A system shutdown is in progress.
]

Error: (01/18/2021 10:29:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.76.0.8269 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 7d4

Čas spuštění: 01d6ede03279581d

Čas ukončení: 52

Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe

ID hlášení: 4ba2906c-0570-4faa-ac2b-a05d4af33131

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (01/18/2021 07:59:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Lenovo-PC)
Description: Microsoft.VCLibs.140.00_8wekyb3d8bbwe-2147024893


System errors:
=============
Error: (01/19/2021 03:47:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/19/2021 03:47:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (01/19/2021 03:42:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/19/2021 03:28:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/19/2021 03:27:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/19/2021 03:27:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/19/2021 03:03:44 PM) (Source: DCOM) (EventID: 10000) (User: Lenovo-PC)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/19/2021 02:13:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.


Windows Defender:
===================================
Date: 2021-01-18 21:28:16.6790000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.317.1926.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17100.2
Kód chyby: 0x8024001e
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:
===================================

Date: 2021-01-19 16:53:16.2070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-01-19 16:50:59.5790000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:57.8370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:57.0170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:56.6530000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:56.6360000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:53.1080000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-19 16:50:52.6750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\PROGRAM FILES\AVG\ANTIVIRUS\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 9CCN30WW(V2.08) 11/26/2014
Motherboard: LENOVO Lenovo B50-30
Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 92%
Total physical RAM: 3978.19 MB
Available physical RAM: 308.6 MB
Total Virtual: 5386.19 MB
Available Virtual: 1055.78 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:423.1 GB) (Free:299.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:13.33 GB) NTFS

\\?\Volume{c487d510-5913-47bc-998b-e89f03103264}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{8ff18cbd-f313-48ce-b03f-40033e7eec1a}\ () (Fixed) (Total:0.84 GB) (Free:0.38 GB) NTFS
\\?\Volume{3e91e73a-2cbd-4472-bcb4-10cdff330a34}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{e8427acf-6140-4386-8702-87f78dceefe3}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{27a78a8f-e282-42b7-857b-1eb57ffcf149}\ (PBR_DRV) (Fixed) (Total:13.49 GB) (Free:2.96 GB) NTFS
\\?\Volume{1bda7093-b1d7-4fb9-b45c-657eb6026153}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3ACB66DE)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3A7B4657-A20A-4452-8056-8AE2AE3AC26F} - \Lenovo\ImController\TimeBasedEvents\a1f2b411-5a3a-49bc-994e-5758bdfa3355 -> No File <==== ATTENTION
Task: {5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {6C909DFF-E9EB-419E-83FC-B9B9C3D484AB} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {8EFE1DE1-1EBE-40CF-815E-75E3F15CD084} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B7A02AC9-7E81-40B2-A973-C8FEAAF84C3C} - \Lenovo\ImController\TimeBasedEvents\72ea24c5-d652-47a9-872b-8615828614e8 -> No File <==== ATTENTION
Task: {C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {E432C5D0-BA4B-4DBD-9BB7-66B7E30E2031} - \Lenovo\ImController\TimeBasedEvents\addd2e26-5f95-471c-b2b7-b3bbeb89360f -> No File <==== ATTENTION
Task: {E7B142A3-254D-4910-919A-8EA4C9E72EB5} - \Lenovo\ImController\TimeBasedEvents\4e3144bc-8d76-4ac4-b53f-c858c6418793 -> No File <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\ProgramData\DP45977C.lfl
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End

Uložte do C:\Users\vkubi_000\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[hakub]

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-01-2021
Ran by Administrator (19-01-2021 19:27:09) Run:1
Running from C:\Users\Administrator\OneDrive\Plocha
Loaded Profiles: vlastimil & Administrator
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3A7B4657-A20A-4452-8056-8AE2AE3AC26F} - \Lenovo\ImController\TimeBasedEvents\a1f2b411-5a3a-49bc-994e-5758bdfa3355 -> No File <==== ATTENTION
Task: {5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {6C909DFF-E9EB-419E-83FC-B9B9C3D484AB} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {8EFE1DE1-1EBE-40CF-815E-75E3F15CD084} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B7A02AC9-7E81-40B2-A973-C8FEAAF84C3C} - \Lenovo\ImController\TimeBasedEvents\72ea24c5-d652-47a9-872b-8615828614e8 -> No File <==== ATTENTION
Task: {C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {E432C5D0-BA4B-4DBD-9BB7-66B7E30E2031} - \Lenovo\ImController\TimeBasedEvents\addd2e26-5f95-471c-b2b7-b3bbeb89360f -> No File <==== ATTENTION
Task: {E7B142A3-254D-4910-919A-8EA4C9E72EB5} - \Lenovo\ImController\TimeBasedEvents\4e3144bc-8d76-4ac4-b53f-c858c6418793 -> No File <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\ProgramData\DP45977C.lfl
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3A7B4657-A20A-4452-8056-8AE2AE3AC26F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3A7B4657-A20A-4452-8056-8AE2AE3AC26F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\a1f2b411-5a3a-49bc-994e-5758bdfa3355" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CFBBB0E-E36E-4D5B-AAB6-CE963A6C6C1C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6C909DFF-E9EB-419E-83FC-B9B9C3D484AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C909DFF-E9EB-419E-83FC-B9B9C3D484AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8EFE1DE1-1EBE-40CF-815E-75E3F15CD084}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8EFE1DE1-1EBE-40CF-815E-75E3F15CD084}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B7A02AC9-7E81-40B2-A973-C8FEAAF84C3C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7A02AC9-7E81-40B2-A973-C8FEAAF84C3C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\72ea24c5-d652-47a9-872b-8615828614e8" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9AFF79C-9E31-41A3-82C6-C44EDAFFACC5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E432C5D0-BA4B-4DBD-9BB7-66B7E30E2031}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E432C5D0-BA4B-4DBD-9BB7-66B7E30E2031}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\addd2e26-5f95-471c-b2b7-b3bbeb89360f" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E7B142A3-254D-4910-919A-8EA4C9E72EB5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7B142A3-254D-4910-919A-8EA4C9E72EB5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\4e3144bc-8d76-4ac4-b53f-c858c6418793" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 6578176 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7418227 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2819903 B
Edge => 7366908 B
Chrome => 367071915 B
Brave => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 18034 B
NetworkService => 18034 B
vkubi_000 => 123479537 B
Administrator => 171476653 B

RecycleBin => 134607150 B
EmptyTemp: => 782.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:28:06 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[hakub]

je to lepší najíždí rychleji ale ještě to není 100% trvá to cca 3 minuty

[Rudy]

Přes příkazový řádek příkazem:

msconfig

+Enter otevřte konfigurační okno a na záložkách "Po spuštění" a "Služby" odstraňte zatržítka u všech ne-microsoftích položek (kromě antiviru a ovladačů). Nastavení uložte a restartujte.

[hakub]

jo už je to lepší

děkuji

[Rudy]

Rádo se stalo!