Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola notebooku

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Příspěvky: 77
Registrován: 16 led 2014 18:01
Bydliště: Biskupice u Luhačovic

Kontrola notebooku

#1 Příspěvek od Pepanecek5 »

dostal se mi do ruky notebook na údržbu. Při otevření Chromu začne neustále něco blokovat avast. Poprosím tedy o kontrolu logu. Děkuji! :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2021
Ran by Bezručovi (administrator) on BEZRUCOVI-PC (Dell Inc. Latitude 3570) (03-11-2021 17:38:16)
Running from C:\Users\Bezručovi\Downloads
Loaded Profiles: Bezručovi
: Microsoft Windows 10 Pro Version 20H2 19042.630 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\dell\Sytem64Folder\DellRctlService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\Install\{96DD38A0-A474-4611-A305-6B0892E6491D}\AvastBrowserInstaller.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\Install\{96DD38A0-A474-4611-A305-6B0892E6491D}\CR_267DC.tmp\setup.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvBugReport.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> ) C:\Program Files\PCHealthCheck\PCHealthCheck.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D18F1B66-0CA1-44FD-B61C-1776BBA9BFDA}\EDGEMITMP_B28D6.tmp\setup.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D18F1B66-0CA1-44FD-B61C-1776BBA9BFDA}\MicrosoftEdge_X64_95.0.1020.40_95.0.1020.38.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1220_none_7e21bc567c7ed16b\TiWorker.exe
(Qualcomm Atheros -> ) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe
(Qualcomm Atheros -> Quacomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.exe
(Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe
(Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom International B.V. -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8853248 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AWiCMgr] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\AWiC\AWiCMgr.exe [189520 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
HKLM\...\Run: [AWiCDiag] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe [2782800 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
HKLM\...\Run: [wcct] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe [1074768 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [134936 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [718256 2015-12-22] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-19] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe [134736 2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Bezručovi\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-20] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Uninstall 21.180.0905.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\21.180.0905.0007"
HKLM\...\Windows x64\Print Processors\SUGE1PC: C:\Windows\System32\spool\prtprocs\x64\suge1pc.dll [33792 2009-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\SUGE1 Langmon: C:\WINDOWS\system32\suge1l6.dll [22016 2009-11-19] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.93\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-10-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\94.0.12470.82\Installer\chrmstp.exe [2021-10-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2018-10-15]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06A283EE-A673-4D75-B50E-888AB57541C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2337568 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
Task: {0E9B0B5C-9FF3-4A29-8479-0868A68DD87B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {161849CF-94AB-4319-9285-5B67767594B9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {24093C7A-BB64-4A0F-967B-30A04900E47E} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {290AE078-656D-47DB-905E-724B9EA9BEEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {2956E29D-A64D-413D-B892-F5AA2AC347BB} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {307C9D52-9FD7-435F-84EA-CF112C656B94} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2337568 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
Task: {3999671B-80BF-4CDF-A95C-93FD2F0FE480} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3CBC40D7-5079-4162-B3CF-8BB086B1F88F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {406CBBE3-AA87-4540-B311-CB787A6D3A7A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {42D9DFAC-BA9E-40A4-8751-DE827923A237} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49072A42-1C33-4821-800D-28DD295D6786} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4DECC1C4-F011-462D-A35C-CAB0039FA605} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {4FF356D2-FE47-4920-B00B-3E8B260DCA26} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {528B6446-B6F7-44E3-AA71-6203798B4E57} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {53C82D5D-CAA2-4928-AD01-FD5CA9402E42} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {54C24529-FE0D-45F3-921C-72B199731A29} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63882D74-4B0D-4654-86EE-D96AE3948093} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6563DB5C-54FD-4007-98A3-1F779956369C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6A73D90C-B17C-4761-8357-1A346F1A3327} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {74B79B52-5FD9-4C14-BAB0-205B4C4DD9F9} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {78734EA5-ACC3-49A6-ACE7-D44D45F60171} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {7999A0A7-D11A-45C6-BDD2-8E903177FB5A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {890E1391-DCEC-4574-9E48-BB9D2E46D75D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1162160 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {92BE7943-78D8-4C4B-883D-3B2AAF434323} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9A2B9639-F80D-4CFC-8E09-0904AD050657} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB947FD5-0408-4CA7-9935-52EA977EEEA9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {ACDC58CF-A087-48C0-A33C-1903B2116D07} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B1450FE1-82E8-40F1-8F3F-5749E0F9E20E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BA7F3875-7416-4EF5-B045-A03824D3AFA2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C1913C94-0842-490C-B755-F95332E09ABA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C7721195-7060-402C-9DAF-E45D57C1C880} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4929304 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {C8EA2390-0812-4F7B-AA36-34099EDC4F40} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {CE4EEC05-AE50-4266-B124-7496745958B2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DA5EBFDD-F0C4-44BB-802B-EC827B4A9BF5} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DA9D1E83-01AA-4187-BDB9-6D13247DE477} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E0024056-A3C8-4FB2-88B3-77B17119DC8B} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {E206701C-2AEC-4820-B234-F35B551CFD49} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F218EEF0-1004-40A5-A322-21D0A63B9A31} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F24C05E2-D170-4E32-B393-21CCAFA0D983} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {F4E8E1D2-1149-43B6-ABEE-3D958BB11236} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
Task: {FAE9ED1F-9FF2-4C0E-9FC1-D422693386EF} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {FDC282CE-C1C0-4B2E-ABD8-44E849B6BD59} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
Task: {FFD0BCF8-7926-4344-A2B0-908C275D350D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{4E51641B-909F-4642-8D5C-3A58B759CAD5}: [DhcpNameServer]
Tcpip\..\Interfaces\{5CD20ED6-CC6A-47C7-B603-E84194B8AC50}: [DhcpNameServer]

Edge DefaultProfile: Default
Edge Profile: C:\Users\Bezručovi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-17]

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

CHR Profile: C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default [2021-11-03]
CHR Notifications: Default -> hxxps://chairgaubsy.com; hxxps://push-cggigee-8015.pushails.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-19]
CHR Extension: (Dokumenty) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-19]
CHR Extension: (Disk Google) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-17]
CHR Extension: (YouTube) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-21]
CHR Extension: (Tabulky) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-17]
CHR Profile: C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-05]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8323664 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R3 AthNetAgent; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe [169040 2015-08-07] (Qualcomm Atheros -> Quacomm Atheros, Inc.) [File not signed]
R2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [630040 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [377624 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\94.0.12470.82\elevation_service.exe [1436280 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 DCDhcpService; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe [198224 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [94136 2016-06-02] (Dell Inc. -> Dell Inc.)
S4 dcu-oobe; C:\Program Files (x86)\Dell\CommandUpdate\OobeService.exe [84408 2016-06-08] (Dell Inc. -> Dell Inc.)
S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{A194D6D8-67BB-4E9B-9B4C-4EB992A0A880} [21312 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
R2 DellRctlService; c:\Dell\Sytem64Folder\DellRctlService.exe [389120 2016-05-03] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13252624 2020-04-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [221600 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369176 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250408 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99368 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41368 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184640 2021-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538480 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107864 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851712 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [557152 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215392 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [29160 2018-07-27] (Dell Inc -> OSR Open Systems Resources, Inc.)
R3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [37792 2016-04-27] (FPT USA Corp. -> )
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-03 17:38 - 2021-11-03 17:39 - 000032030 _____ C:\Users\Bezručovi\Downloads\FRST.txt
2021-11-03 17:38 - 2021-11-03 17:38 - 000000000 ____D C:\FRST
2021-11-03 17:37 - 2021-11-03 17:37 - 002311168 _____ (Farbar) C:\Users\Bezručovi\Downloads\FRST64.exe
2021-10-30 16:07 - 2021-10-30 16:07 - 000000000 ___HD C:\$WinREAgent
2021-10-30 16:00 - 2021-10-30 16:00 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\mbam
2021-10-30 15:59 - 2021-10-30 15:59 - 000000000 ____D C:\Program Files\Malwarebytes
2021-10-30 15:42 - 2021-10-30 15:42 - 000000000 ____D C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2021-10-30 15:41 - 2021-10-30 15:41 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-30 15:41 - 2021-10-30 15:41 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-20 18:45 - 2021-10-20 18:46 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-10-20 18:45 - 2021-10-20 18:45 - 000001830 _____ C:\Users\Bezručovi\Desktop\CrystalDiskInfo.lnk
2021-10-20 18:45 - 2021-10-20 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-10-20 18:44 - 2021-10-20 18:45 - 004737112 _____ (Crystal Dew World ) C:\Users\Bezručovi\Downloads\CrystalDiskInfo8_12_10a.exe
2021-10-17 19:47 - 2021-10-17 19:47 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7afc57dba979e

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-03 17:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-03 17:39 - 2017-01-21 20:01 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-03 17:38 - 2021-09-22 17:07 - 000000000 ____D C:\Windows.old
2021-11-03 17:37 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-03 17:36 - 2021-05-11 20:42 - 000000000 ___DC C:\WINDOWS\Panther
2021-11-03 17:34 - 2020-09-27 06:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-03 17:34 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-11-03 17:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-03 17:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-30 16:03 - 2017-01-31 16:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-30 15:58 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-30 15:53 - 2021-08-18 17:14 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-30 15:53 - 2021-08-18 17:14 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-30 15:50 - 2016-09-16 02:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-30 15:47 - 2020-09-27 08:58 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-30 15:47 - 2020-09-27 08:58 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-30 15:46 - 2021-09-22 16:23 - 001842554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-30 15:46 - 2019-12-07 15:43 - 000752236 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-30 15:46 - 2019-12-07 15:43 - 000162774 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-30 15:44 - 2017-01-31 16:00 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-30 15:42 - 2021-09-22 16:33 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2899849470-2927131367-1028810573-1000
2021-10-30 15:42 - 2021-09-20 14:57 - 000002395 _____ C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-30 15:42 - 2020-10-01 20:01 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-30 15:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-30 15:34 - 2021-09-22 16:33 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-10-30 15:32 - 2018-04-16 16:43 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\AVAST Software
2021-10-30 15:31 - 2020-09-27 08:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-30 15:31 - 2020-09-27 06:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-30 15:31 - 2020-05-02 15:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-30 15:31 - 2017-01-21 19:53 - 000000000 __SHD C:\Users\Bezručovi\IntelGraphicsProfiles
2021-10-20 18:48 - 2020-10-17 08:39 - 000184640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-10-20 18:42 - 2021-09-22 16:33 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-20 18:42 - 2021-09-22 16:33 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-17 19:55 - 2021-09-04 12:08 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\D3DSCache
2021-10-17 19:52 - 2020-02-26 19:40 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\Packages
2021-10-17 19:47 - 2020-09-27 08:58 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-17 19:22 - 2021-09-22 16:37 - 000002594 _____ C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-10-17 19:22 - 2021-09-22 16:37 - 000002541 _____ C:\Users\Bezručovi\Desktop\Avast Secure Browser.lnk

==================== Files in the root of some directories ========

2017-12-24 12:07 - 2017-12-24 12:10 - 050063360 _____ () C:\Program Files (x86)\GUTA2A6.tmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Příspěvky: 77
Registrován: 16 led 2014 18:01
Bydliště: Biskupice u Luhačovic

Re: Kontrola notebooku

#2 Příspěvek od Pepanecek5 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2021
Ran by Bezručovi (03-11-2021 17:40:34)
Running from C:\Users\Bezručovi\Downloads
Microsoft Windows 10 Pro Version 20H2 19042.630 (X64) (2021-09-22 15:34:14)
Boot Mode: Normal

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2899849470-2927131367-1028810573-500 - Administrator - Disabled)
Bezručovi (S-1-5-21-2899849470-2927131367-1028810573-1000 - Administrator - Enabled) => C:\Users\Bezručovi
DefaultAccount (S-1-5-21-2899849470-2927131367-1028810573-503 - Limited - Disabled)
Guest (S-1-5-21-2899849470-2927131367-1028810573-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2899849470-2927131367-1028810573-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aplikácie Microsoft 365 pre podnikateľov - sk-sk (HKLM\...\O365BusinessRetail - sk-sk) (Version: 16.0.14527.20234 - Microsoft Corporation)
Aplikacje Microsoft 365 dla firm - pl-pl (HKLM\...\O365BusinessRetail - pl-pl) (Version: 16.0.14527.20234 - Microsoft Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.8.2487 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 94.0.12470.82 - Autoři prohlížeče Avast Secure Browser)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Create Recovery Media (HKLM-x32\...\{10F3CD89-8A7E-48D4-9101-B44E5ACFEFDC}) (Version: - Dell)
CrystalDiskInfo 8.12.10 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.10 - Crystal Dew World)
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.1.1 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 6.1.24058 - Invincea, Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: - Synaptics Incorporated)
Dell Unified Wireless Suite (HKLM-x32\...\{6CFE6F33-3D69-4B9C-AA20-FF1F8CB064D5}) (Version: 1.00.0000 - Dell)
Dell WLAN HotKey Driver (HKLM\...\{CB666CAE-2726-4005-BC04-4F5EB2A3278B}) (Version: - Dell Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: - Google Inc.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
LibreOffice (HKLM\...\{4F0D0C39-A2CD-4908-AA4C-A1CC9BDCD71A}) (Version: - The Document Foundation)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8006.3 - Waves Audio Ltd.) Hidden
Microsoft 365 Apps for business - en-us (HKLM\...\O365BusinessRetail - en-us) (Version: 16.0.14527.20234 - Microsoft Corporation)
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.14527.20234 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.38 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: - HP Inc.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: - Samsung Electronics Co., Ltd.) Hidden
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0071 - ST Microelectronics)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.5.3 - TeamViewer)
TomTom MyDrive Connect (HKLM-x32\...\MyDriveConnect) (Version: - TomTom)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: - Samsung Electronics CO., LTD.)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: - Microsoft Corporation)
Üzleti Microsoft 365-alkalmazások - hu-hu (HKLM\...\O365BusinessRetail - hu-hu) (Version: 16.0.14527.20234 - Microsoft Corporation)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Vulkan Run Time Libraries (HKLM\...\VulkanRT1.0.54.1) (Version: - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.8.33.0_x86__kgqvnymyfvs32 [2021-09-09] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.63.5.0_x86__kgqvnymyfvs32 [2021-09-09] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-09-09] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0 [2021-09-09] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ShellContextExt.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxDTCM.dll [2020-04-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2015-06-02 07:03 - 2015-06-02 07:03 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Map\MAP.dll
2016-06-14 14:08 - 2016-06-14 14:08 - 015995904 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\opengl32sw.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000032256 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qdds.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000218112 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll
2020-11-10 16:00 - 2020-11-10 16:00 - 000132096 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\quazip.dll
2020-11-10 16:00 - 2020-11-10 16:00 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\zlib1.dll
2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2020-04-19 16:34 - 2020-04-19 16:34 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2020-04-19 16:34 - 2020-04-19 16:34 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000016464 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCCust.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000007760 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Interop.AthNetAgentLib.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000022608 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Interop.NETWORKLIST.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000034384 _____ (Qualcomm Atheros -> Atheros Communication) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Remoting.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000034384 _____ (Qualcomm Atheros -> Atheros Communication) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\Atheros.Remoting.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000196176 _____ (Qualcomm Atheros -> Atheros Communications) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DCWlan.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 002330192 _____ (Qualcomm Atheros -> Atheros Communications) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\DiagAPI.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000374352 _____ (Qualcomm Atheros -> Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\Newtonsoft.Json.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000374352 _____ (Qualcomm Atheros -> Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Newtonsoft.Json.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\ipc.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\TCPConnection.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\utils.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000079952 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Net.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000236112 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Toolkit.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001265744 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.DirectConnect.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000025168 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.Infrastructure.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000164432 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.SoftAP.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000134736 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.SpectralAnalyser.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001655376 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.WirelessConfiguration.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001060944 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.WirelessNetworkManagement.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000033360 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\CommApi.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000203344 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\FolderViewImpl.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000126544 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\gatts.DLL
2015-06-02 07:10 - 2015-06-02 07:10 - 000083024 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Handsfree.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000034384 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ipc.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000063056 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ModuleManager.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 001067600 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\OutlookLib.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000130128 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\skypeagent.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000027216 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\TCPConnection.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000116304 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\utils.dll
2015-06-02 07:04 - 2015-06-02 07:04 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\LE\LE.dll
2015-08-07 06:32 - 2015-08-07 06:32 - 000112640 _____ (Qualcomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\cs-CZ\AWiCDiag.dll.mui
2015-06-02 07:05 - 2015-06-02 07:05 - 000210432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Audio\audio.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\BIP\BIP.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\DID\DId.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\FAX\Fax.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000422400 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2015-06-02 07:01 - 2015-06-02 07:01 - 000096768 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\goep\goep.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2015-06-02 07:01 - 2015-06-02 07:01 - 000181248 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\OppOperation\ObjPush.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\pbap\pbap.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\sap\sap.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\spp\spp.dll
2015-06-02 07:04 - 2015-06-02 07:04 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Sync\Sync.dll
2018-06-14 09:49 - 2018-06-14 09:49 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll
2018-10-15 11:11 - 2018-10-15 11:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll
2020-11-10 16:05 - 2020-11-10 16:05 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll
2018-10-15 11:09 - 2018-10-15 11:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll
2020-11-10 16:03 - 2020-11-10 16:03 - 000143360 _____ (TomTom) [File not signed] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:149 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:223 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:300 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3575 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3633 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3731 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:95 [0]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\nádrž na vodu.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\nádrž na vodu.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\UPRAVENY NÁČRT.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\UPRAVENY NÁČRT.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17prewin10.msn.com/?pc=DCTE
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17prewin10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000 -> DefaultScope {5858A0ED-6CB1-468F-ADD7-A89FA7CD1DF0} URL =
SearchScopes: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000 -> {5858A0ED-6CB1-468F-ADD7-A89FA7CD1DF0} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\sharepoint.com -> hxxps://nwt-myfiles.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-05 09:16 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bezručovi\Desktop\wallpaper-08-1920x1200.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "MyDriveConnect.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FC179FD1-969C-412D-A1A4-7F3DBFAAEC12}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{A3239A5E-DA0C-4211-8496-1EE9F8AAAD8F}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{615D5175-FDC4-41D5-9C64-9D9BA0E44B1D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{18389A72-6D5D-42DB-B7E1-B3CB5EA814BA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{FA4487EA-62B3-4C6F-9688-0FB838A96E70}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{95F6F53D-B2D6-4A1C-B489-E2B90A42A154}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{D9DB049B-CFD0-4BF6-81A3-2B4DE21BA020}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{7FAEE291-190A-4DFF-B55D-7905C29DBA41}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{29B655F0-F83E-4E7D-87F5-7712D9A7B080}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2216F652-9515-4255-B8D3-BAABE3F39EF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DE2B7091-00AF-48C9-9AF2-A1206C25F56E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD60D5C3-6D6F-450A-9532-2144C264DF35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0D89A61A-7E78-4109-87B5-A4AD887167F1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{819DE368-A535-4559-A777-AF407C60A245}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F936EC54-468C-45E1-80BD-7107B3738DDC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{26CB83DD-3C7B-4919-A1AC-F8EE24762F13}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{97B46452-730C-437D-A389-269362FCA454}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C8B1CAC2-FE52-4309-A92A-950EB717A1C6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE5A5B97-531D-42F6-ADB7-AF61DDB00ABC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{12D9D47C-3591-4C62-A4B8-A2D40D489739}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C022C7DA-37E0-4A8F-A60F-42FA3AB71AA8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{37430C27-D2AB-432C-A53F-E9502B25CE78}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CF238222-5759-4F19-B984-8267A49CEA1F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{834556E4-E86A-470D-B7C1-A2FBD555254C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{25B6CDB2-9EA0-4E94-BA90-8C7BE5B3D459}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{519CC936-8EA5-45E4-8440-1C4D14A49521}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{DFDF046F-F99A-4541-B03E-1457B9D6FE5F}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{F40A4328-8A07-45A2-A0E6-6592E08EC2E8}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{A6712A76-2B2B-46F7-BB47-75178EE5A951}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{F2BAE3F0-F943-42C1-B3E5-6A2143472D2C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DirectDisplay.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{6BBA6DA5-71A7-471B-81D7-244D024C359E}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DirectDisplay.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{87002775-5A19-489C-B201-9725262C8F6B}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCWpaSupplicant.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{530C9A92-9653-421E-86CF-BB164CCDB22D}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCWpaSupplicant.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{C0DBC857-BF75-40EF-8802-566074513A87}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe (Qualcomm Atheros -> ) [File not signed]
FirewallRules: [{0A32B12E-7685-4250-B49D-834A75694933}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe (Qualcomm Atheros -> ) [File not signed]
FirewallRules: [{2EBB5601-DBB9-403B-B6CF-2A7C3FD16B89}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{8402B537-723F-43BE-81D2-60A83F3BDF89}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{81FC29BA-5508-4518-B1CB-F41A4F9470AC}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{DA1400EB-5215-4A25-8115-FCB1C8EEEE86}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{2C83D7A5-9C48-472B-B9D6-38B7C4B6150C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCICS.exe => No File
FirewallRules: [{D45010D8-D95F-4546-A154-8E600858952E}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCICS.exe => No File
FirewallRules: [{F71F7BD3-88B5-4820-9DA7-025FDC117427}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCSrvc.exe => No File
FirewallRules: [{2711D0AF-94EF-4BA1-BDCA-436F68035F02}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCSrvc.exe => No File
FirewallRules: [{7AD8E06B-9B2E-4903-B8D8-5F3D5E819D7C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DiagConsole.exe => No File
FirewallRules: [{DDF95730-B2B6-42AE-AA8F-DA225670C3F7}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DiagConsole.exe => No File
FirewallRules: [{000B8735-43F3-4F3E-ABCC-73347B0154A7}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
FirewallRules: [{42992FC8-8C79-4031-A289-2B9D9F51DCF9}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
FirewallRules: [TCP Query User{C7E56FD1-13ED-4870-900D-CA7A3895E047}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{D25CD9C3-7F00-4146-88E2-7569B55BFC16}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [{D0DCE10F-DF5D-4B2E-BF38-984D53EA5359}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{76577C28-BD9F-4731-94E2-6AD3BE428C9E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{39570E38-5EAE-40A4-B999-3317DBB186F7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D69A36AF-597F-4852-9D8D-D9E25419DE84}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{67CA71B3-E639-4DA0-A8D1-A17423154A3E}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3D857367-1C5F-4138-B0EF-6B2FA1AB8D90}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20B2F35B-DCAD-477D-87E4-6FC0C6FED185}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
Error: (11/03/2021 05:37:46 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/30/2021 04:07:26 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (10/30/2021 03:39:34 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/17/2021 07:47:48 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/17/2021 07:44:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CompatTelRunner.exe, verze: 10.0.19645.1016, časové razítko: 0x9513fef7
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.610, časové razítko: 0xe5d7ed5c
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000fed29
ID chybujícího procesu: 0x27bc
Čas spuštění chybující aplikace: 0x01d7b15a1108ce47
Cesta k chybující aplikaci: C:\WINDOWS\system32\CompatTelRunner.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 0582dfe8-a35f-48fc-9e88-81ee55e93617
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/17/2021 07:16:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LockApp.exe verze 10.0.19041.423 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1d5c

Čas spuštění: 01d7c382c8376b93

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

ID hlášení: a738cf0d-42de-4358-93f8-0e2b8f96ab44

Úplný název balíčku s chybou: Microsoft.LockApp_10.0.19041.423_neutral__cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: WindowsDefaultLockScreen

Typ zablokování: Cross-thread

Error: (09/22/2021 05:00:50 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="".
Definice je UccApi,processorArchitecture="x86",type="win32",version="".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (09/22/2021 04:34:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 2796, identifikátor PID ProfSvc: 1140.

System errors:
Error: (10/30/2021 03:31:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:34:20, ‎18.‎10.‎2021) bylo neočekávané.

Error: (10/20/2021 06:42:09 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby gupdate s argumenty /comsvc za účelem spuštění serveru:

Error: (10/20/2021 06:42:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/20/2021 06:42:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (10/17/2021 07:14:44 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby gupdate s argumenty /comsvc za účelem spuštění serveru:

Error: (10/17/2021 07:14:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/17/2021 07:14:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (09/24/2021 04:43:44 PM) (Source: DCOM) (EventID: 10010) (User: BEZRUCOVI-PC)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.423_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.BackgroundTransferTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.

Date: 2021-11-03 17:42:05
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\setup\uat_3548.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-11-03 17:35:03
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-10-30 17:07:27
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. 1.2.1 06/20/2016
Motherboard: Dell Inc. 09DX9D
Processor: Intel(R) Core(TM) i3-6100U CPU @ 2.30GHz
Percentage of memory in use: 69%
Total physical RAM: 8012.36 MB
Available physical RAM: 2429.27 MB
Total Virtual: 16204.36 MB
Available Virtual: 11136.33 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:451.99 GB) (Free:315.57 GB) NTFS

\\?\Volume{dffe4f53-0000-0000-0000-800200000000}\ (RECOVERY) (Fixed) (Total:13.73 GB) (Free:3.86 GB) NTFS

==================== MBR & Partition Table ====================

Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: DFFE4F53)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118357
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Kontrola notebooku

#3 Příspěvek od Rudy »

Spustte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
