VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prevenčka laptop

https://forum.viry.cz:443/viewtopic.php?t=158091

Stránka 1 z 2

Prevenčka laptop

Napsal: 21 kvě 2021 06:54
od Thomas
Je to starej krám, ale to neznamená že by nemohl bejt trochu rychlejší. Jen preventivní kontrola

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-05-2021
Ran by tomas (21-05-2021 07:45:36)
Running from C:\Users\tomas\Downloads
Windows 10 Pro Version 2004 19041.985 (X64) (2020-09-25 11:59:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-364587917-2012317419-2455768257-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-364587917-2012317419-2455768257-503 - Limited - Disabled)
Guest (S-1-5-21-364587917-2012317419-2455768257-501 - Limited - Disabled)
tomas (S-1-5-21-364587917-2012317419-2455768257-1002 - Administrator - Enabled) => C:\Users\tomas
WDAGUtilityAccount (S-1-5-21-364587917-2012317419-2455768257-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D Pinball (HKLM-x32\...\{C342E30B-52F9-4657-96B6-32E399B9DEB2}) (Version: 5.1.2600.5512 - Microsoft Coprporation)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adventure Pinball Demo (HKLM-x32\...\Adventure Pinball Demo) (Version: - )
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.)
doPDF (HKLM\...\{09BE69E4-B9AD-447D-8A2F-E1D6CBE9C417}) (Version: 10.1.112 - Softland) Hidden
doPDF 10 (HKLM-x32\...\{f5020cd6-f9e7-47b4-ba38-35989d3528ac}) (Version: 10.1.112 - Softland)
doPDF 10 add-in for Microsoft Office (x64) (HKLM\...\{F9F53ACC-96EE-49A9-B947-0BDBC9F29A70}) (Version: 10.1.112 - Softland)
doPDF 10 add-in for Microsoft Office (x86) (HKLM-x32\...\{F274B289-723E-46E4-A2E5-50F9DA00EC92}) (Version: 10.1.112 - Softland)
doPDF 10 Printer Driver (HKLM\...\{F2AA4489-36C5-428A-A715-DD4BFE05361F}) (Version: 10.1.112 - Softland)
FastStone Image Viewer 6.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.5 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)
LibreOffice 6.2.0.3 (HKLM-x32\...\{C0B9601C-3433-41E2-B681-4C86274F0656}) (Version: 6.2.0.3 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 90.0.818.62 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-364587917-2012317419-2455768257-1002\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation)
Microsoft Pinball Arcade Trial (HKLM-x32\...\Pinball Arcade Trial Version 1.0) (Version: - )
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
OpenOffice 4.1.7 (HKLM-x32\...\{E3E3C1D4-6886-4EDB-9F12-335641465055}) (Version: 4.17.9800 - Apache Software Foundation)
Opera Stable 76.0.4017.123 (HKLM-x32\...\Opera 76.0.4017.123) (Version: 76.0.4017.123 - Opera Software)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
PDF24 Creator 9.0.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0067 - ST Microelectronics)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Zoner Photo Studio 11 (HKLM-x32\...\ZonerPhotoStudio11_CZ_is1) (Version: - ZONER software)

Packages:
=========
Dell SupportAssist for PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.3.8.0_x64__htrsf667h5kn2 [2019-10-31] (Dell Inc)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.401.0_x64__rz1tebttyb220 [2021-04-25] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-09] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5060.0_x64__8wekyb3d8bbwe [2021-05-12] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-05-20 16:01 - 2016-03-09 23:05 - 000122888 ____H () [File not signed] C:\ProgramData\rpcnet\bin\GLAwsnl.dll
2019-09-04 02:00 - 2019-09-04 02:00 - 000584704 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll
2019-09-04 02:00 - 2019-09-04 02:00 - 000542208 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll
2018-06-24 16:33 - 2011-01-25 02:57 - 004637184 _____ (IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\STLang64.dll
2020-09-25 13:35 - 2011-01-25 02:57 - 000651776 ____N (IDT, Inc.) [File not signed] C:\WINDOWS\system32\stapi64.dll
2020-09-25 13:35 - 2011-01-25 02:57 - 001499136 _____ (IDT, Inc.) [File not signed] C:\WINDOWS\system32\stapo64.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2019-05-08 20:36 - 2019-05-08 20:36 - 000018944 _____ (Softland) [File not signed] C:\WINDOWS\System32\novamn10.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-364587917-2012317419-2455768257-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\tomas\OneDrive\Pictures\killer-820017_1280.jpg
DNS Servers: 77.236.192.130 - 77.236.192.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FF6D8518-8107-408D-B471-392B6182A973}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7DA411C6-7978-4091-A80B-DEC9AA80AA56}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D533EA2D-49BE-45DA-9393-07529F9E99F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{60CCD97E-BBE2-4121-B2D8-6D9CA49A316C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E2DC7159-DE2E-4E28-BC91-787D6D763019}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{A0B651C4-B620-4558-BB98-2227CD021065}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{5B99D888-EDFE-49EC-BCF3-EE57A8AE6C53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E67D0F2F-76BD-4266-B76D-D5461DD28D78}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{203C8757-EF4A-4912-8CDC-0C13F476007A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B88112A-C5C8-4660-AEED-51A91C477552}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F32D09F-1F9B-498D-851E-46220E652419}] => (Allow) C:\Program Files (x86)\Opera\76.0.4017.107\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{B8CFDA79-295E-4779-AE38-06C73256B012}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{929D326C-8136-4903-B2B6-675347272561}] => (Allow) C:\Program Files (x86)\Opera\76.0.4017.123\opera.exe (Opera Software AS -> Opera Software)

==================== Restore Points =========================

20-04-2021 20:32:10 Instalační služba modulů systému Windows
06-05-2021 18:43:46 Naplánovaný kontrolní bod
13-05-2021 20:45:49 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/20/2021 11:56:42 PM) (Source: USHUpgradeService) (EventID: 2) (User: )
Description: Will not attempt to upgrade CV firmware because there were too many failed firmware upgrades.

Error: (05/20/2021 05:28:56 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (05/20/2021 02:10:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.844 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 4470

Čas spuštění: 01d74cf5a99210df

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: c5ab590e-232b-4ba5-adb4-3a6f8c2917e8

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

Error: (05/18/2021 02:23:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (4196,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (05/18/2021 02:23:05 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (4196,R,98) WebCacheLocal: Pokus o otevření souboru C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (05/16/2021 02:48:08 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.985_none_e72c6fe7263b0fe4\TiWorker.exe -Embedding; Popis = Instalační služba modulů systému Windows; Chyba = 0x81000101).

Error: (05/16/2021 12:27:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (5004,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (05/16/2021 12:27:27 PM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (5004,R,98) WebCacheLocal: Pokus o otevření souboru C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (05/20/2021 04:23:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba kontroly sítě v Antivirové ochraně v programu Microsoft Defender závisí na službě Systémový ovladač kontroly sítě v Antivirové ochraně v programu Microsoft Defender, která neuspěla při spuštění v důsledku následující chyby:
Služba nebyla spuštěna.

Error: (05/20/2021 04:23:03 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Brother - Printer - 4/22/2009 12:00:00 AM - 10.0.17119.1.

Error: (05/17/2021 12:58:02 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-C5F069G)
Description: Server Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX49we79s9ab0xp8xpjb6t6g31ep03r71y.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/16/2021 12:27:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-C5F069G)
Description: Server Microsoft.Windows.Photos_2020.20120.4004.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/14/2021 12:45:04 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-C5F069G)
Description: Server Microsoft.Windows.Photos_2020.20120.4004.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/13/2021 08:38:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-C5F069G)
Description: Server microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/12/2021 09:26:35 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-C5F069G)
Description: Server Microsoft.Windows.Photos_2020.20120.4004.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/10/2021 08:30:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Brother - Printer - 4/22/2009 12:00:00 AM - 10.0.17119.1.


Windows Defender:
================
Date: 2021-05-20 16:58:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {39ACC5A5-FD7D-4D40-B536-6119B27FA6A5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-12 00:05:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CE4782AD-4076-45B1-8B20-1C9CCD7A484B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-09 08:09:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {20BB8D78-3B39-4AF8-A3B3-DD3DCF0B02DF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-08 07:58:15
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FDB69560-ADCD-4B71-87AB-D1E8C80567CF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-07 08:18:45
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F77345D2-D3EB-4AE1-8DF9-2ECCB4917DE4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-16 14:56:49
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.339.584.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.6
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-05-06 13:16:43
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.61.0
Předchozí verze bezpečnostních informací: 1.337.647.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-05-06 13:16:43
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.61.0
Předchozí verze bezpečnostních informací: 1.337.647.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-05-06 13:16:43
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-27 21:48:01
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.337.61.0
Předchozí verze bezpečnostních informací: 1.335.1620.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.5
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===============
Date: 2020-11-06 11:52:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. A13 11/17/2013
Motherboard: Dell Inc. 0R97MN
Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 83%
Total physical RAM: 3977.01 MB
Available physical RAM: 650.75 MB
Total Virtual: 5833.01 MB
Available Virtual: 2218.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.58 GB) (Free:254.54 GB) NTFS ==>[drive with boot components (obtained from BCD)]

\\?\Volume{e91e6299-0000-0000-0000-f0644a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: E91E6299)
Partition 1: (Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=525 MB) - (Type=27)

==================== End of Addition.txt =======================

Re: Prevenčka laptop

Napsal: 21 kvě 2021 23:26
od Conder
Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede

Re: Prevenčka laptop

Napsal: 22 kvě 2021 07:30
od Thomas
K restartu nedošlo :roll:

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{80701f5f-f89c-4335-abe6-cc8b7eebde60}|DhcpNameServer - "77.236.192.130"
Deleted HKLM\System\CurrentControlSet\Services\Tcpip\Parameters|DhcpNameServer - "77.236.192.130"

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [3303 octets] - [19/10/2019 21:36:26]
AdwCleaner[S00].txt - [1918 octets] - [29/01/2021 18:20:09]
AdwCleaner[C00].txt - [1910 octets] - [29/01/2021 18:20:39]
AdwCleaner[S01].txt - [1987 octets] - [22/05/2021 07:45:33]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Prevenčka laptop

Napsal: 24 kvě 2021 18:34
od Conder
Log zrejme nie je cely. Skus pozret do zlozky C:\AdwCleaner\Logs a tam otvor a skopiruj obsah suboru AdwCleaner[C01].txt.

Poprosim aj o obidva nove logy z FRST.

Re: Prevenčka laptop

Napsal: 25 kvě 2021 16:09
od Thomas
Momentálně jsem mimo testovanej laptop, zkusím to znova ve čtvrtek :arcisit:

Re: Prevenčka laptop

Napsal: 27 kvě 2021 00:40
od Conder
Jasne :)

Re: Prevenčka laptop

Napsal: 03 čer 2021 10:23
od Thomas
Ahoj jsem u laptopu v tý složce adcleaner logs nic není. Další postup? Mám na to čas do neděle :oops:

Re: Prevenčka laptop

Napsal: 03 čer 2021 21:19
od Thomas
Opět bez restartu

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-03-2021
# Duration: 00:00:17
# OS: Windows 10 Pro
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{80701f5f-f89c-4335-abe6-cc8b7eebde60}|DhcpNameServer - "77.236.192.130"
Deleted HKLM\System\CurrentControlSet\Services\Tcpip\Parameters|DhcpNameServer - "77.236.192.130"

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2781 octets] - [03/06/2021 22:15:48]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Prevenčka laptop

Napsal: 03 čer 2021 21:24
od Thomas
Kouknul jsem pod céčko a je tam ještě tenhle log:

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-03-2021
# Duration: 00:00:53
# OS: Windows 10 Pro
# Scanned: 31975
# Detected: 12


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{80701f5f-f89c-4335-abe6-cc8b7eebde60}|DhcpNameServer - "77.236.192.130"
PUP.Optional.Legacy HKLM\System\CurrentControlSet\Services\Tcpip\Parameters|DhcpNameServer - "77.236.192.130"

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73B56AC9-8D97-4166-91A2-2485B54FD95E}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73B56AC9-8D97-4166-91A2-2485B54FD95E}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Re: Prevenčka laptop

Napsal: 03 čer 2021 23:19
od Conder
Poprosim obidva nove logy z FRST.

Re: Prevenčka laptop

Napsal: 04 čer 2021 06:37
od Thomas
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2021
Ran by tomas (04-06-2021 07:29:45)
Running from C:\Users\tomas\Downloads
Windows 10 Pro Version 2004 19041.985 (X64) (2020-09-25 11:59:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-364587917-2012317419-2455768257-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-364587917-2012317419-2455768257-503 - Limited - Disabled)
Guest (S-1-5-21-364587917-2012317419-2455768257-501 - Limited - Disabled)
tomas (S-1-5-21-364587917-2012317419-2455768257-1002 - Administrator - Enabled) => C:\Users\tomas
WDAGUtilityAccount (S-1-5-21-364587917-2012317419-2455768257-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D Pinball (HKLM-x32\...\{C342E30B-52F9-4657-96B6-32E399B9DEB2}) (Version: 5.1.2600.5512 - Microsoft Coprporation)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adventure Pinball Demo (HKLM-x32\...\Adventure Pinball Demo) (Version: - )
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Dell SupportAssist (HKLM\...\{A3E44B1D-1AC1-414F-A7D4-0824E0A49F3A}) (Version: 3.9.1.245 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{900D0BCD-0B86-4DAA-B639-89BE70449569}) (Version: 5.4.1.14954 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{ec40a028-983b-4213-af2c-77ed6f6fe1d5}) (Version: 5.4.1.14954 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.)
doPDF (HKLM\...\{09BE69E4-B9AD-447D-8A2F-E1D6CBE9C417}) (Version: 10.1.112 - Softland) Hidden
doPDF 10 (HKLM-x32\...\{f5020cd6-f9e7-47b4-ba38-35989d3528ac}) (Version: 10.1.112 - Softland)
doPDF 10 add-in for Microsoft Office (x64) (HKLM\...\{F9F53ACC-96EE-49A9-B947-0BDBC9F29A70}) (Version: 10.1.112 - Softland)
doPDF 10 add-in for Microsoft Office (x86) (HKLM-x32\...\{F274B289-723E-46E4-A2E5-50F9DA00EC92}) (Version: 10.1.112 - Softland)
doPDF 10 Printer Driver (HKLM\...\{F2AA4489-36C5-428A-A715-DD4BFE05361F}) (Version: 10.1.112 - Softland)
FastStone Image Viewer 6.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.5 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.77 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)
LibreOffice 6.2.0.3 (HKLM-x32\...\{C0B9601C-3433-41E2-B681-4C86274F0656}) (Version: 6.2.0.3 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-364587917-2012317419-2455768257-1002\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Pinball Arcade Trial (HKLM-x32\...\Pinball Arcade Trial Version 1.0) (Version: - )
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
OpenOffice 4.1.7 (HKLM-x32\...\{E3E3C1D4-6886-4EDB-9F12-335641465055}) (Version: 4.17.9800 - Apache Software Foundation)
Opera Stable 76.0.4017.177 (HKLM-x32\...\Opera 76.0.4017.177) (Version: 76.0.4017.177 - Opera Software)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
PDF24 Creator 9.0.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0067 - ST Microelectronics)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Zoner Photo Studio 11 (HKLM-x32\...\ZonerPhotoStudio11_CZ_is1) (Version: - ZONER software)

Packages:
=========
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.9.13.0_x64__htrsf667h5kn2 [2021-05-31] (Dell Inc)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.1108.0_x64__rz1tebttyb220 [2021-05-28] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-09] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-22] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-05-31 18:37 - 2021-05-31 18:37 - 015433216 _____ () [File not signed] C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.9.13.0_x64__htrsf667h5kn2\SupportAssistClientUI.dll
2018-06-24 16:33 - 2011-01-25 02:57 - 004637184 _____ (IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\STLang64.dll
2020-09-25 13:35 - 2011-01-25 02:57 - 000651776 ____N (IDT, Inc.) [File not signed] C:\WINDOWS\system32\stapi64.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2021-04-21 02:18 - 2021-04-21 02:18 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2019-05-08 20:36 - 2019-05-08 20:36 - 000018944 _____ (Softland) [File not signed] C:\WINDOWS\System32\novamn10.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-364587917-2012317419-2455768257-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\tomas\OneDrive\Pictures\killer-820017_1280.jpg
DNS Servers: 77.236.192.130 - 77.236.192.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FF6D8518-8107-408D-B471-392B6182A973}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7DA411C6-7978-4091-A80B-DEC9AA80AA56}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D533EA2D-49BE-45DA-9393-07529F9E99F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{60CCD97E-BBE2-4121-B2D8-6D9CA49A316C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E2DC7159-DE2E-4E28-BC91-787D6D763019}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{A0B651C4-B620-4558-BB98-2227CD021065}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{5B99D888-EDFE-49EC-BCF3-EE57A8AE6C53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E67D0F2F-76BD-4266-B76D-D5461DD28D78}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{203C8757-EF4A-4912-8CDC-0C13F476007A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B88112A-C5C8-4660-AEED-51A91C477552}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9D8C53D-E41F-4090-9B98-70D0000F4B53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{13763659-4D0E-4ECD-BF4D-28882B276248}] => (Allow) C:\Program Files (x86)\Opera\76.0.4017.154\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{8B83849D-CE82-4A4C-A48C-4584DE07882D}] => (Allow) C:\Program Files (x86)\Opera\76.0.4017.177\opera.exe (Opera Software AS -> Opera Software)

==================== Restore Points =========================

13-05-2021 20:45:49 Instalační služba modulů systému Windows
22-05-2021 07:47:43 AdwCleaner_BeforeCleaning_22/05/2021_07:47:42
03-06-2021 21:37:56 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/03/2021 09:37:43 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (05/31/2021 06:38:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (05/28/2021 08:20:33 AM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (19912,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (05/28/2021 08:20:33 AM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (19912,R,98) WebCacheLocal: Pokus o otevření souboru C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (05/27/2021 11:48:47 AM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (7348,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (05/27/2021 11:48:47 AM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (7348,R,98) WebCacheLocal: Pokus o otevření souboru C:\Users\tomas\AppData\Local\Microsoft\Windows\WebCache\V01.log pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (05/25/2021 06:53:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.80.0.8743 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 3134

Čas spuštění: 01d75185cc44dbcf

Čas ukončení: 9

Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe

ID hlášení: bf33f9de-96cb-470c-9f75-bb1ad252689b

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (05/22/2021 03:46:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 19dc

Čas spuštění: 01d74f021132b3ce

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe

ID hlášení: 5cb1eb98-bda9-4ccc-8cf2-0abc1840070a

Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.964_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce


System errors:
=============
Error: (06/04/2021 07:19:01 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro produkt Microsoft Defender Antivirus - KB2267602 (verze 1.341.24.0).

Error: (06/03/2021 10:16:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Dell Hardware Support byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba novaPDF 10 Server byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Remote Procedure Call (RPC) Net byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba PDF24 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ServiceLayer byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Dell Data Vault Collector byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (06/03/2021 10:16:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Dell Data Vault Processor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2021-06-03 21:01:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {35E8D5EC-BF59-4A37-AEA3-E2589BD8FAA8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-31 18:21:55
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4D31EEF1-918A-4A80-B394-9CB7BA735265}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-31 13:31:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {10B8F087-DFB8-4FFD-8980-D6AB36BC7181}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-31 12:47:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2B17C41C-471D-4EC3-826F-F911AC22D3DA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-05-28 14:49:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B403D94A-AF6E-4802-9AC9-58EB7C3765E6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-04 07:18:58
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.341.24.0
Předchozí verze bezpečnostních informací: 1.339.1937.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18200.4
Předchozí verze modulu: 1.1.18100.6
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-04 07:18:58
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.341.24.0
Předchozí verze bezpečnostních informací: 1.339.1937.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18200.4
Předchozí verze modulu: 1.1.18100.6
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-04 07:18:58
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18200.4
Předchozí verze modulu: 1.1.18100.6
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-05-16 14:56:49
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.339.584.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.6
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-05-06 13:16:43
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.61.0
Předchozí verze bezpečnostních informací: 1.337.647.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===============
Date: 2020-11-06 11:52:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. A13 11/17/2013
Motherboard: Dell Inc. 0R97MN
Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 78%
Total physical RAM: 3977.01 MB
Available physical RAM: 836.96 MB
Total Virtual: 7031.59 MB
Available Virtual: 2794.1 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.58 GB) (Free:252.35 GB) NTFS ==>[drive with boot components (obtained from BCD)]

\\?\Volume{e91e6299-0000-0000-0000-f0644a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: E91E6299)
Partition 1: (Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=525 MB) - (Type=27)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2021
Ran by tomas (administrator) on DESKTOP-C5F069G (Dell Inc. Latitude E6220) (04-06-2021 07:22:26)
Running from C:\Users\tomas\Downloads
Loaded Profiles: tomas
Platform: Windows 10 Pro Version 2004 19041.985 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\tomas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [727896 2015-07-09] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.) [File not signed]
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [4042960 2021-06-02] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-364587917-2012317419-2455768257-1002\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-364587917-2012317419-2455768257-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\WINDOWS\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\WINDOWS\system32\novamn10.dll [18944 2019-05-08] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-05-26] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {138607BF-B42A-4991-A477-A2D38D5ADF02} - System32\Tasks\Opera scheduled assistant Autoupdate 1582736126 => C:\Program Files (x86)\Opera\launcher.exe [1718480 2021-06-02] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
Task: {2C57E302-9283-47CB-969F-7D1D2C6B3170} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3301B68A-A834-4600-BE18-AF84D999FB5E} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2019-05-08] (Softland SRL -> )
Task: {3473B1D2-F400-41C3-B292-D0D3CFE293BB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {4AC243A9-A966-4B65-8BF7-13E1916005FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-05] (Google Inc -> Google Inc.)
Task: {73B56AC9-8D97-4166-91A2-2485B54FD95E} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059872 2021-05-24] (Dell Inc -> Dell Inc.)
Task: {8E478971-442F-4FC8-BC85-1EC68B02B1F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B69F6695-B28C-40C2-95F6-A2CF7DAC1A42} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-05] (Google Inc -> Google Inc.)
Task: {BD9060D7-F7A2-498B-AFDC-B41970EA9C52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C5B9E972-65D5-4168-9F74-145C58F2E868} - System32\Tasks\Opera scheduled Autoupdate 1526659664 => C:\Program Files (x86)\Opera\launcher.exe [1718480 2021-06-02] (Opera Software AS -> Opera Software)
Task: {CBDBA5D3-904E-4FE3-A75C-1505BF05EA0A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6F722EB-861A-41BD-847C-5BD17BC81D78} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EE92282C-F399-47F0-A2B6-B7941A5FF428} - System32\Tasks\doPDF 10 Update => C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe [98096 2019-05-08] (Softland SRL -> )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 77.236.192.130 77.236.192.150
Tcpip\..\Interfaces\{80701f5f-f89c-4335-abe6-cc8b7eebde60}: [DhcpNameServer] 77.236.192.130 77.236.192.150
Tcpip\..\Interfaces\{d4e419cf-9e7c-4fc0-8690-1f4d98412ecc}: [DhcpNameServer] 192.168.135.1 8.8.8.8

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\tomas\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-03]

FireFox:
========
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\tomas\AppData\Local\Google\Chrome\User Data\Default [2021-06-04]
CHR Notifications: Default -> hxxps://abouthome.cz; hxxps://aukro.cz; hxxps://www.amateri.com; hxxps://www.chance.cz; hxxps://www.kupi.cz; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.facebook.com/marketplace/item/34835 ... jn/3391773"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-03]
CHR HKU\S-1-5-21-364587917-2012317419-2455768257-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-364587917-2012317419-2455768257-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Profile: C:\Users\tomas\AppData\Roaming\Opera Software\Opera Stable [2021-06-04]
OPR Notifications: Opera Stable -> hxxps://aukro.cz; hxxps://www.amateri.com; hxxps://www.chance.cz; hxxps://www.kupi.cz; hxxps://www.youtube.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\tomas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-05-22]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
S2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2015-07-09] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [422128 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3975712 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [623136 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1009264 2021-03-30] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-06] (Dell Inc -> )
S2 hostcontrolsvc; C:\WINDOWS\System32\HostControlService.exe [815616 2018-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation)
S2 hoststoragesvc; C:\WINDOWS\System32\HostStorageService.exe [161280 2018-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation)
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [53040 2019-05-08] (Softland SRL -> Microsoft)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [487048 2019-08-07] (Geek Software GmbH -> Geek Software GmbH)
S2 rpcld; C:\ProgramData\Rpcnet\Bin\rpcld.exe [184840 2016-02-03] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [296448 2011-01-25] (IDT, Inc.) [File not signed]
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-05-24] (Dell Inc -> Dell Inc.)
S2 ushupgradesvc; C:\WINDOWS\System32\UshUpgradeService.exe [265728 2018-03-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-20] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 cykbfltrService; C:\WINDOWS\system32\DRIVERS\cykbfltr.sys [19968 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Cypress Semiconductor, Inc.)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2021-05-31] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 MpKsl8a503a41; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5EFC1F72-FCD6-4742-8EAF-5277AA549F5A}\MpKslDrv.sys [47336 2021-06-03] (Microsoft Windows -> Microsoft Corporation)
R3 O2MDFW8x64; C:\WINDOWS\System32\drivers\O2MDFw8x64.sys [74368 2012-06-15] (O2Micro -> O2Micro)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [521728 2011-03-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-05-20] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-20] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-04 07:20 - 2021-06-04 07:20 - 002300416 _____ (Farbar) C:\Users\tomas\Downloads\FRST64 (3).exe
2021-06-03 22:13 - 2021-06-03 22:14 - 008534696 _____ (Malwarebytes) C:\Users\tomas\Downloads\adwcleaner_8.2 (1).exe
2021-06-03 20:51 - 2021-06-03 20:51 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582736126
2021-06-03 15:03 - 2021-06-03 15:03 - 000003970 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1526659664
2021-06-03 15:03 - 2021-06-03 15:03 - 000001155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-06-03 08:30 - 2021-06-03 08:30 - 000000173 __RSH C:\ProgramData\3002.xml
2021-05-31 19:16 - 2021-05-31 19:16 - 000109387 _____ C:\Users\tomas\Downloads\Zálohová_faktura_21550025.pdf
2021-05-31 19:16 - 2021-05-31 19:16 - 000108601 _____ C:\Users\tomas\Downloads\Zálohová_faktura_21550026.pdf
2021-05-31 18:27 - 2021-05-31 18:27 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2021-05-31 12:47 - 2021-05-31 12:47 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2021-05-31 12:22 - 2021-05-31 12:22 - 000098430 _____ C:\Users\tomas\Downloads\Nabídka_21NA00104.pdf
2021-05-31 12:20 - 2021-05-31 12:20 - 000099038 _____ C:\Users\tomas\Downloads\Nabídka_21NA00103.pdf
2021-05-28 08:22 - 2021-05-28 08:22 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-364587917-2012317419-2455768257-1002
2021-05-28 08:22 - 2021-05-28 08:22 - 000002361 _____ C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-26 12:16 - 2021-05-26 12:16 - 000000000 ____D C:\Program Files (x86)\PC Connectivity SSettings
2021-05-25 18:53 - 2021-05-25 18:53 - 000000000 ____D C:\ProgramData\Avast Software
2021-05-25 18:53 - 2021-05-25 18:53 - 000000000 ____D C:\Program Files\Avast Software
2021-05-25 18:47 - 2021-05-25 18:47 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-24 15:50 - 2021-05-24 15:50 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-05-22 15:08 - 2021-05-31 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2021-05-22 15:05 - 2021-05-22 15:05 - 000000000 ____D C:\Program Files (x86)\Dell
2021-05-22 15:03 - 2021-05-22 15:03 - 000633576 _____ (Dell Inc.) C:\Users\tomas\Downloads\SupportAssistLauncher.exe
2021-05-22 14:02 - 2021-05-22 14:03 - 004512258 _____ C:\Users\tomas\Downloads\HE_v1.19.06.23_Setup (1).zip
2021-05-22 13:53 - 2021-05-22 13:53 - 004512258 _____ C:\Users\tomas\Downloads\HE_v1.19.06.23_Setup.zip
2021-05-22 13:49 - 2021-05-22 13:52 - 000000000 ____D C:\Program Files (x86)\Dr. Hardware 2004 5.5.0e
2021-05-22 13:49 - 1999-07-17 02:21 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\W95Inf32.DLL
2021-05-22 13:49 - 1999-07-17 02:21 - 000002272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\W95Inf16.DLL
2021-05-22 13:48 - 2021-05-22 13:48 - 014025144 _____ C:\Users\tomas\Downloads\drh2004e.exe
2021-05-22 07:44 - 2021-05-22 07:44 - 008534696 _____ (Malwarebytes) C:\Users\tomas\Downloads\adwcleaner_8.2.exe
2021-05-21 07:13 - 2021-05-21 07:13 - 002299904 _____ (Farbar) C:\Users\tomas\Downloads\FRST64 (2).exe
2021-05-20 23:58 - 2021-05-19 20:24 - 000414082 __RSH C:\bootmgr
2021-05-20 23:58 - 2019-12-07 11:08 - 000000001 ___SH C:\BOOTNXT
2021-05-20 14:10 - 2021-05-20 14:10 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-19 20:26 - 2021-05-19 20:26 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-19 20:26 - 2021-05-19 20:26 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-19 20:25 - 2021-05-19 20:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-19 20:25 - 2021-05-19 20:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-19 20:25 - 2021-05-19 20:25 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-19 20:25 - 2021-05-19 20:25 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-19 20:25 - 2021-05-19 20:25 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-19 20:24 - 2021-05-19 20:24 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-19 20:23 - 2021-05-19 20:23 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-19 20:23 - 2021-05-19 20:23 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-19 20:23 - 2021-05-19 20:23 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-19 20:22 - 2021-05-19 20:22 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-19 20:21 - 2021-05-19 20:21 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-04 07:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-04 07:26 - 2019-10-20 10:40 - 000016455 _____ C:\Users\tomas\Downloads\FRST.txt
2021-06-04 07:24 - 2019-10-20 10:40 - 000000000 ____D C:\FRST
2021-06-04 07:17 - 2018-07-05 21:30 - 000000000 ____D C:\Program Files\CCleaner
2021-06-04 07:16 - 2018-05-18 18:05 - 000000000 ___RD C:\Users\tomas\OneDrive
2021-06-03 22:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-03 21:43 - 2020-09-25 13:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-03 21:43 - 2018-03-07 09:57 - 000017920 _____ C:\WINDOWS\system32\rpcnetp.exe
2021-06-03 16:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-03 16:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-03 15:03 - 2018-05-18 18:07 - 000000000 ____D C:\Program Files (x86)\Opera
2021-05-31 13:02 - 2020-09-25 13:48 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-31 13:02 - 2019-12-07 16:43 - 000683504 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-31 13:02 - 2019-12-07 16:43 - 000137284 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-26 12:25 - 2018-07-05 21:30 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-24 15:50 - 2018-03-07 11:51 - 000000000 ____D C:\ProgramData\Dell
2021-05-22 15:44 - 2018-06-24 16:22 - 000000000 ____D C:\Program Files\Dell
2021-05-22 15:43 - 2019-06-02 08:48 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-22 15:09 - 2018-06-24 16:24 - 000000000 ____D C:\ProgramData\PCDr
2021-05-22 15:04 - 2018-06-24 16:22 - 000000000 ____D C:\ProgramData\SupportAssist
2021-05-22 13:58 - 2020-09-25 13:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-22 13:58 - 2020-09-25 13:29 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-22 13:58 - 2018-06-24 11:50 - 000032080 _____ C:\WINDOWS\system32\CVFirmwareUpgradeLog.txt
2021-05-22 13:58 - 2018-03-07 11:57 - 000080464 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll
2021-05-22 13:57 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-21 07:55 - 2020-11-16 21:02 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashDumps
2021-05-21 07:49 - 2019-10-20 10:43 - 000025367 _____ C:\Users\tomas\Downloads\Addition.txt
2021-05-21 07:04 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-20 23:56 - 2020-09-25 13:30 - 000459688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-20 23:52 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-20 23:52 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-20 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-20 16:23 - 2018-05-19 22:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-20 16:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 20:45 - 2018-05-19 22:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 20:38 - 2018-05-19 22:35 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-08 19:52 - 2020-09-25 13:37 - 000000000 ____D C:\Users\tomas

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Prevenčka laptop

Napsal: 05 čer 2021 20:22
od Conder
:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
Folder: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
File: C:\ProgramData\Rpcnet\Bin\rpcld.exe
File: C:\Program Files\IDT\WDM\STacSV64.exe
File: C:\WINDOWS\System32\drivers\BthA2dp.sys
2021-05-24 15:50 - 2021-05-24 15:50 - 000000000 _____ C:\WINDOWS\invcol.tmp

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah skopiruj a vloz do dalsej odpovede

Re: Prevenčka laptop

Napsal: 05 čer 2021 21:18
od Thomas
Fix result of Farbar Recovery Scan Tool (x64) Version: 05-06-2021 01
Ran by tomas (05-06-2021 22:03:24) Run:3
Running from C:\Users\tomas\OneDrive\Plocha
Loaded Profiles: tomas
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
Folder: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
File: C:\ProgramData\Rpcnet\Bin\rpcld.exe
File: C:\Program Files\IDT\WDM\STacSV64.exe
File: C:\WINDOWS\System32\drivers\BthA2dp.sys
2021-05-24 15:50 - 2021-05-24 15:50 - 000000000 _____ C:\WINDOWS\invcol.tmp

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Local\Data aplikací byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\...l\Data aplikací:String) [Get-ChildItem],
UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Local\History byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\AppData\Local\History:String) [Get-ChildItem
], UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 byl odep
řen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\...che\Content.IE5:String) [Get-ChildItem],
UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Local\Microsoft\Windows\Temporary Internet Files byl o
depřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\... Internet Files:String) [Get-ChildItem],
UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Local\Temporary Internet Files byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\... Internet Files:String) [Get-ChildItem],
UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programy byl odep
řen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\...t Menu\Programy:String) [Get-ChildItem],
UnauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Data aplikací byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Data aplikací:String) [Get-ChildItem], Unaut
horizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Documents\Filmy byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Documents\Filmy:String) [Get-ChildItem], Una
uthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Documents\Hudba byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Documents\Hudba:String) [Get-ChildItem], Una
uthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Documents\Obrázky byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Documents\Obrázky:String) [Get-ChildItem], U
nauthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Dokumenty byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Dokumenty:String) [Get-ChildItem], Unauthori
zedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Local Settings byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Local Settings:String) [Get-ChildItem], Unau
thorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Nabídka Start byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Nabídka Start:String) [Get-ChildItem], Unaut
horizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Okolní síť byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Okolní síť:String) [Get-ChildItem], Unauthor
izedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Okolní tiskárny byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Okolní tiskárny:String) [Get-ChildItem], Una
uthorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Poslední byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Poslední:String) [Get-ChildItem], Unauthoriz
edAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\SendTo byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\SendTo:String) [Get-ChildItem], Unauthorized
AccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Soubory cookie byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Soubory cookie:String) [Get-ChildItem], Unau
thorizedAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Get-ChildItem : Přístup k cestě C:\Users\tomas\Šablony byl odepřen.
At C:\FRST\tmp.ps1:1 char:1
+ Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Meas ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : PermissionDenied: (C:\Users\tomas\Šablony:String) [Get-ChildItem], Unauthorize
dAccessException
+ FullyQualifiedErrorId : DirUnauthorizedAccessError,Microsoft.PowerShell.Commands.GetChildItemCommand

Measure-Object : The property "Length" cannot be found in the input for any objects.
At C:\FRST\tmp.ps1:1 char:66
+ ... OFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidArgument: (:) [Measure-Object], PSArgumentException
+ FullyQualifiedErrorId : GenericMeasurePropertyNotFound,Microsoft.PowerShell.Commands.MeasureObjectComm
and

========= End of Powershell: =========


========================= Folder: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe ========================

2021-05-19 20:21 - 2021-05-19 20:21 - 000000321 ____A [2270739F508AE8BB0632DC8270079026] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppxBlockMap.xml
2021-05-19 20:21 - 2021-05-19 20:21 - 000024908 ____A [2C013FDBF70FEF87F617FDD284494264] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppxManifest.xml
2021-05-19 20:21 - 2021-05-19 20:21 - 000008615 ____A [8D0B1A107D4546502BC2FF0E448948D1] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppxSignature.p7x
2021-05-19 20:21 - 2021-05-19 20:21 - 001234704 ____A [9206E60C818E1BC9F40C960A83B6E354] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\resources.pri
2020-09-25 13:47 - 2020-09-25 14:21 - 000000000 __SHD [00000000000000000000000000000000] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoft.system.package.metadata
2020-09-25 14:21 - 2021-05-21 07:04 - 000000000 ____D [00000000000000000000000000000000] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoft.system.package.metadata\Autogen
2021-05-21 07:04 - 2021-05-21 07:04 - 000000004 ___AS [1036E3DDDC89A4E68D8A33F3823A180E] () C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoft.system.package.metadata\Autogen\JSByteCodeCache_64

====== End of Folder: ======


========================= File: C:\ProgramData\Rpcnet\Bin\rpcld.exe ========================

"C:\ProgramData\Rpcnet\Bin\rpcld.exe" => not found
====== End of File: ======


========================= File: C:\Program Files\IDT\WDM\STacSV64.exe ========================

C:\Program Files\IDT\WDM\STacSV64.exe
File not signed
MD5: B2D8B364A831427A5741F6C408FA8AE3
Creation and modification date: 2018-06-24 16:33 - 2011-01-25 02:57
Size: 000296448
Attributes: ----A
Company Name: IDT, Inc.
Internal Name: IDT PCA
Original Name: stacsv64.exe
Product: IDT PC Audio
Description: IDT PC Audio
File Version: 1.0.6324.0
Product Version: 1.0.6324.0
Copyright: Copyright © 2004 - 2009 IDT, Inc.
VirusTotal: https://www.virustotal.com/gui/file/17b ... 1619735760

====== End of File: ======


========================= File: C:\WINDOWS\System32\drivers\BthA2dp.sys ========================

C:\WINDOWS\System32\drivers\BthA2dp.sys
File not signed
MD5: 7F09708B8C651A0C0E2A2725136BA254
Creation and modification date: 2019-12-07 11:07 - 2019-12-07 11:07
Size: 000279040
Attributes: ----A
Company Name: Microsoft Corporation
Internal Name: btha2dp.sys
Original Name: btha2dp.sys
Product: Microsoft® Windows® Operating System
Description: Bluetooth A2DP Driver
File Version: 10.0.19041.1 (WinBuild.160101.0800)
Product Version: 10.0.19041.1
Copyright: © Microsoft Corporation. All rights reserved.
VirusTotal: https://www.virustotal.com/gui/file/044 ... 1622885421

====== End of File: ======

C:\WINDOWS\invcol.tmp => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 82330182 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 155417481 B
Edge => 0 B
Chrome => 459147789 B
Firefox => 0 B
Opera => 457760567 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 34624836 B
tomas => 72873278 B

RecycleBin => 23220951 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:11:14 ====

Re: Prevenčka laptop

Napsal: 05 čer 2021 21:39
od Conder
Logy vyzeraju OK. Su s PC nejake problemy?

Re: Prevenčka laptop

Napsal: 06 čer 2021 06:36
od Thomas
Vůbec ne a je daleko hbitější takže díky za pomoc :closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz