VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola notebooku

https://forum.viry.cz:443/viewtopic.php?t=158348

Stránka 1 z 1

Kontrola notebooku

Napsal: 03 lis 2021 17:49
od Pepanecek5
Zdravím,
dostal se mi do ruky notebook na údržbu. Při otevření Chromu začne neustále něco blokovat avast. Poprosím tedy o kontrolu logu. Děkuji! :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2021
Ran by Bezručovi (administrator) on BEZRUCOVI-PC (Dell Inc. Latitude 3570) (03-11-2021 17:38:16)
Running from C:\Users\Bezručovi\Downloads
Loaded Profiles: Bezručovi
: Microsoft Windows 10 Pro Version 20H2 19042.630 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\dell\Sytem64Folder\DellRctlService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\Install\{96DD38A0-A474-4611-A305-6B0892E6491D}\AvastBrowserInstaller.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\Install\{96DD38A0-A474-4611-A305-6B0892E6491D}\CR_267DC.tmp\setup.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvBugReport.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> ) C:\Program Files\PCHealthCheck\PCHealthCheck.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D18F1B66-0CA1-44FD-B61C-1776BBA9BFDA}\EDGEMITMP_B28D6.tmp\setup.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D18F1B66-0CA1-44FD-B61C-1776BBA9BFDA}\MicrosoftEdge_X64_95.0.1020.40_95.0.1020.38.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1220_none_7e21bc567c7ed16b\TiWorker.exe
(Qualcomm Atheros -> ) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe
(Qualcomm Atheros -> Quacomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe
(Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.exe
(Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe
(Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom International B.V. -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8853248 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AWiCMgr] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\AWiC\AWiCMgr.exe [189520 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
HKLM\...\Run: [AWiCDiag] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe [2782800 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
HKLM\...\Run: [wcct] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe [1074768 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [134936 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [718256 2015-12-22] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-19] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\BtvStack.exe [134736 2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Bezručovi\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-20] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\RunOnce: [Uninstall 21.180.0905.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bezručovi\AppData\Local\Microsoft\OneDrive\21.180.0905.0007"
HKLM\...\Windows x64\Print Processors\SUGE1PC: C:\Windows\System32\spool\prtprocs\x64\suge1pc.dll [33792 2009-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\SUGE1 Langmon: C:\WINDOWS\system32\suge1l6.dll [22016 2009-11-19] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.93\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-10-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\94.0.12470.82\Installer\chrmstp.exe [2021-10-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2018-10-15]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06A283EE-A673-4D75-B50E-888AB57541C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2337568 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
Task: {0E9B0B5C-9FF3-4A29-8479-0868A68DD87B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {161849CF-94AB-4319-9285-5B67767594B9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {24093C7A-BB64-4A0F-967B-30A04900E47E} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {290AE078-656D-47DB-905E-724B9EA9BEEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {2956E29D-A64D-413D-B892-F5AA2AC347BB} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {307C9D52-9FD7-435F-84EA-CF112C656B94} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2337568 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
Task: {3999671B-80BF-4CDF-A95C-93FD2F0FE480} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3CBC40D7-5079-4162-B3CF-8BB086B1F88F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {406CBBE3-AA87-4540-B311-CB787A6D3A7A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {42D9DFAC-BA9E-40A4-8751-DE827923A237} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49072A42-1C33-4821-800D-28DD295D6786} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4DECC1C4-F011-462D-A35C-CAB0039FA605} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {4FF356D2-FE47-4920-B00B-3E8B260DCA26} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {528B6446-B6F7-44E3-AA71-6203798B4E57} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {53C82D5D-CAA2-4928-AD01-FD5CA9402E42} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {54C24529-FE0D-45F3-921C-72B199731A29} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63882D74-4B0D-4654-86EE-D96AE3948093} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6563DB5C-54FD-4007-98A3-1F779956369C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6A73D90C-B17C-4761-8357-1A346F1A3327} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {74B79B52-5FD9-4C14-BAB0-205B4C4DD9F9} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {78734EA5-ACC3-49A6-ACE7-D44D45F60171} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {7999A0A7-D11A-45C6-BDD2-8E903177FB5A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {890E1391-DCEC-4574-9E48-BB9D2E46D75D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1162160 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {92BE7943-78D8-4C4B-883D-3B2AAF434323} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9A2B9639-F80D-4CFC-8E09-0904AD050657} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB947FD5-0408-4CA7-9935-52EA977EEEA9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {ACDC58CF-A087-48C0-A33C-1903B2116D07} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B1450FE1-82E8-40F1-8F3F-5749E0F9E20E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BA7F3875-7416-4EF5-B045-A03824D3AFA2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C1913C94-0842-490C-B755-F95332E09ABA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C7721195-7060-402C-9DAF-E45D57C1C880} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4929304 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {C8EA2390-0812-4F7B-AA36-34099EDC4F40} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {CE4EEC05-AE50-4266-B124-7496745958B2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DA5EBFDD-F0C4-44BB-802B-EC827B4A9BF5} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DA9D1E83-01AA-4187-BDB9-6D13247DE477} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E0024056-A3C8-4FB2-88B3-77B17119DC8B} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {E206701C-2AEC-4820-B234-F35B551CFD49} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F218EEF0-1004-40A5-A322-21D0A63B9A31} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F24C05E2-D170-4E32-B393-21CCAFA0D983} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {F4E8E1D2-1149-43B6-ABEE-3D958BB11236} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
Task: {FAE9ED1F-9FF2-4C0E-9FC1-D422693386EF} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {FDC282CE-C1C0-4B2E-ABD8-44E849B6BD59} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
Task: {FFD0BCF8-7926-4344-A2B0-908C275D350D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4E51641B-909F-4642-8D5C-3A58B759CAD5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5CD20ED6-CC6A-47C7-B603-E84194B8AC50}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Bezručovi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-17]

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default [2021-11-03]
CHR Notifications: Default -> hxxps://chairgaubsy.com; hxxps://push-cggigee-8015.pushails.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-19]
CHR Extension: (Dokumenty) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-19]
CHR Extension: (Disk Google) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-17]
CHR Extension: (YouTube) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-21]
CHR Extension: (Tabulky) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-17]
CHR Profile: C:\Users\Bezručovi\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-05]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8323664 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R3 AthNetAgent; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Agent\AthNetAgent.exe [169040 2015-08-07] (Qualcomm Atheros -> Quacomm Atheros, Inc.) [File not signed]
R2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [630040 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [377624 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\94.0.12470.82\elevation_service.exe [1436280 2021-10-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 DCDhcpService; C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe [198224 2015-08-07] (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [94136 2016-06-02] (Dell Inc. -> Dell Inc.)
S4 dcu-oobe; C:\Program Files (x86)\Dell\CommandUpdate\OobeService.exe [84408 2016-06-08] (Dell Inc. -> Dell Inc.)
S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{A194D6D8-67BB-4E9B-9B4C-4EB992A0A880} [21312 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
R2 DellRctlService; c:\Dell\Sytem64Folder\DellRctlService.exe [389120 2016-05-03] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13252624 2020-04-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [221600 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369176 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250408 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99368 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41368 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184640 2021-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538480 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107864 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851712 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [557152 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215392 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [29160 2018-07-27] (Dell Inc -> OSR Open Systems Resources, Inc.)
R3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [37792 2016-04-27] (FPT USA Corp. -> )
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-03 17:38 - 2021-11-03 17:39 - 000032030 _____ C:\Users\Bezručovi\Downloads\FRST.txt
2021-11-03 17:38 - 2021-11-03 17:38 - 000000000 ____D C:\FRST
2021-11-03 17:37 - 2021-11-03 17:37 - 002311168 _____ (Farbar) C:\Users\Bezručovi\Downloads\FRST64.exe
2021-10-30 16:07 - 2021-10-30 16:07 - 000000000 ___HD C:\$WinREAgent
2021-10-30 16:00 - 2021-10-30 16:00 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\mbam
2021-10-30 15:59 - 2021-10-30 15:59 - 000000000 ____D C:\Program Files\Malwarebytes
2021-10-30 15:42 - 2021-10-30 15:42 - 000000000 ____D C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2021-10-30 15:41 - 2021-10-30 15:41 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-30 15:41 - 2021-10-30 15:41 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-20 18:45 - 2021-10-20 18:46 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-10-20 18:45 - 2021-10-20 18:45 - 000001830 _____ C:\Users\Bezručovi\Desktop\CrystalDiskInfo.lnk
2021-10-20 18:45 - 2021-10-20 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-10-20 18:44 - 2021-10-20 18:45 - 004737112 _____ (Crystal Dew World ) C:\Users\Bezručovi\Downloads\CrystalDiskInfo8_12_10a.exe
2021-10-17 19:47 - 2021-10-17 19:47 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7afc57dba979e

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-03 17:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-03 17:39 - 2017-01-21 20:01 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-03 17:38 - 2021-09-22 17:07 - 000000000 ____D C:\Windows.old
2021-11-03 17:37 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-03 17:36 - 2021-05-11 20:42 - 000000000 ___DC C:\WINDOWS\Panther
2021-11-03 17:34 - 2020-09-27 06:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-03 17:34 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-11-03 17:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-03 17:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-30 16:03 - 2017-01-31 16:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-30 15:58 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-30 15:53 - 2021-08-18 17:14 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-30 15:53 - 2021-08-18 17:14 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-30 15:50 - 2016-09-16 02:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-30 15:47 - 2020-09-27 08:58 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-30 15:47 - 2020-09-27 08:58 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-30 15:46 - 2021-09-22 16:23 - 001842554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-30 15:46 - 2019-12-07 15:43 - 000752236 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-30 15:46 - 2019-12-07 15:43 - 000162774 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-30 15:44 - 2017-01-31 16:00 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-30 15:42 - 2021-09-22 16:33 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2899849470-2927131367-1028810573-1000
2021-10-30 15:42 - 2021-09-20 14:57 - 000002395 _____ C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-30 15:42 - 2020-10-01 20:01 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-30 15:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-30 15:34 - 2021-09-22 16:33 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-10-30 15:32 - 2018-04-16 16:43 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\AVAST Software
2021-10-30 15:31 - 2020-09-27 08:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-30 15:31 - 2020-09-27 06:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-30 15:31 - 2020-05-02 15:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-30 15:31 - 2017-01-21 19:53 - 000000000 __SHD C:\Users\Bezručovi\IntelGraphicsProfiles
2021-10-20 18:48 - 2020-10-17 08:39 - 000184640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-10-20 18:42 - 2021-09-22 16:33 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-20 18:42 - 2021-09-22 16:33 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-17 19:55 - 2021-09-04 12:08 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\D3DSCache
2021-10-17 19:52 - 2020-02-26 19:40 - 000000000 ____D C:\Users\Bezručovi\AppData\Local\Packages
2021-10-17 19:47 - 2020-09-27 08:58 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-17 19:22 - 2021-09-22 16:37 - 000002594 _____ C:\Users\Bezručovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-10-17 19:22 - 2021-09-22 16:37 - 000002541 _____ C:\Users\Bezručovi\Desktop\Avast Secure Browser.lnk

==================== Files in the root of some directories ========

2017-12-24 12:07 - 2017-12-24 12:10 - 050063360 _____ () C:\Program Files (x86)\GUTA2A6.tmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Kontrola notebooku

Napsal: 03 lis 2021 17:49
od Pepanecek5
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2021
Ran by Bezručovi (03-11-2021 17:40:34)
Running from C:\Users\Bezručovi\Downloads
Microsoft Windows 10 Pro Version 20H2 19042.630 (X64) (2021-09-22 15:34:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2899849470-2927131367-1028810573-500 - Administrator - Disabled)
Bezručovi (S-1-5-21-2899849470-2927131367-1028810573-1000 - Administrator - Enabled) => C:\Users\Bezručovi
DefaultAccount (S-1-5-21-2899849470-2927131367-1028810573-503 - Limited - Disabled)
Guest (S-1-5-21-2899849470-2927131367-1028810573-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2899849470-2927131367-1028810573-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aplikácie Microsoft 365 pre podnikateľov - sk-sk (HKLM\...\O365BusinessRetail - sk-sk) (Version: 16.0.14527.20234 - Microsoft Corporation)
Aplikacje Microsoft 365 dla firm - pl-pl (HKLM\...\O365BusinessRetail - pl-pl) (Version: 16.0.14527.20234 - Microsoft Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.8.2487 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 94.0.12470.82 - Autoři prohlížeče Avast Secure Browser)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Create Recovery Media (HKLM-x32\...\{10F3CD89-8A7E-48D4-9101-B44E5ACFEFDC}) (Version: 1.0.0.1 - Dell)
CrystalDiskInfo 8.12.10 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.10 - Crystal Dew World)
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.1.1 - Dell Inc.)
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 6.1.24058 - Invincea, Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.1.44.0 - Synaptics Incorporated)
Dell Unified Wireless Suite (HKLM-x32\...\{6CFE6F33-3D69-4B9C-AA20-FF1F8CB064D5}) (Version: 1.00.0000 - Dell)
Dell WLAN HotKey Driver (HKLM\...\{CB666CAE-2726-4005-BC04-4F5EB2A3278B}) (Version: 1.0.0.6 - Dell Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1167 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.1.1043 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.4.51 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
LibreOffice 7.1.5.2 (HKLM\...\{4F0D0C39-A2CD-4908-AA4C-A1CC9BDCD71A}) (Version: 7.1.5.2 - The Document Foundation)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8006.3 - Waves Audio Ltd.) Hidden
Microsoft 365 Apps for business - en-us (HKLM\...\O365BusinessRetail - en-us) (Version: 16.0.14527.20234 - Microsoft Corporation)
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.14527.20234 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.38 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6105 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.34 - HP Inc.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0071 - ST Microelectronics)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.19260 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.5.3 - TeamViewer)
TomTom MyDrive Connect 4.2.11.4200 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.93 - Samsung Electronics CO., LTD.)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: 2.71.0.0 - Microsoft Corporation)
Üzleti Microsoft 365-alkalmazások - hu-hu (HKLM\...\O365BusinessRetail - hu-hu) (Version: 16.0.14527.20234 - Microsoft Corporation)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.8.33.0_x86__kgqvnymyfvs32 [2021-09-09] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.63.5.0_x86__kgqvnymyfvs32 [2021-09-09] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-09-09] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0 [2021-09-09] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ShellContextExt.dll [2015-06-02] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_654e79489f2b9f28\igfxDTCM.dll [2020-04-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2015-06-02 07:03 - 2015-06-02 07:03 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Map\MAP.dll
2016-06-14 14:08 - 2016-06-14 14:08 - 015995904 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\opengl32sw.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000032256 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qdds.dll
2014-09-11 16:14 - 2014-09-11 16:14 - 000218112 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll
2020-11-10 16:00 - 2020-11-10 16:00 - 000132096 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\quazip.dll
2020-11-10 16:00 - 2020-11-10 16:00 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\zlib1.dll
2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2020-04-19 16:34 - 2020-04-19 16:34 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2020-04-19 16:34 - 2020-04-19 16:34 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000016464 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCCust.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000007760 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Interop.AthNetAgentLib.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000022608 _____ (Qualcomm Atheros -> ) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Interop.NETWORKLIST.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000034384 _____ (Qualcomm Atheros -> Atheros Communication) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Remoting.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000034384 _____ (Qualcomm Atheros -> Atheros Communication) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\Atheros.Remoting.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000196176 _____ (Qualcomm Atheros -> Atheros Communications) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DCWlan.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 002330192 _____ (Qualcomm Atheros -> Atheros Communications) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\DiagAPI.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000374352 _____ (Qualcomm Atheros -> Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\Newtonsoft.Json.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000374352 _____ (Qualcomm Atheros -> Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Newtonsoft.Json.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\ipc.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\TCPConnection.dll
2015-08-07 06:36 - 2015-08-07 06:36 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000097872 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\ipc.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\utils.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000076880 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\TCPConnection.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000190544 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\utils.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000079952 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Net.dll
2015-08-07 06:35 - 2015-08-07 06:35 - 000236112 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Atheros.Toolkit.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001265744 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.DirectConnect.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000025168 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.Infrastructure.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000164432 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.SoftAP.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 000134736 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.SpectralAnalyser.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001655376 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.WirelessConfiguration.dll
2015-08-07 06:37 - 2015-08-07 06:37 - 001060944 _____ (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Wcct.WirelessNetworkManagement.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000033360 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\CommApi.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000203344 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\FolderViewImpl.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000126544 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\gatts.DLL
2015-06-02 07:10 - 2015-06-02 07:10 - 000083024 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Handsfree.dll
2015-06-02 07:10 - 2015-06-02 07:10 - 000034384 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ipc.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000063056 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\ModuleManager.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 001067600 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\OutlookLib.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000130128 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\skypeagent.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000027216 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\TCPConnection.dll
2015-06-02 07:11 - 2015-06-02 07:11 - 000116304 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\utils.dll
2015-06-02 07:04 - 2015-06-02 07:04 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\LE\LE.dll
2015-08-07 06:32 - 2015-08-07 06:32 - 000112640 _____ (Qualcomm Atheros, Inc.) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\cs-CZ\AWiCDiag.dll.mui
2015-06-02 07:05 - 2015-06-02 07:05 - 000210432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Audio\audio.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\BIP\BIP.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\DID\DId.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\FAX\Fax.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000422400 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2015-06-02 07:01 - 2015-06-02 07:01 - 000096768 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\goep\goep.dll
2015-06-02 07:03 - 2015-06-02 07:03 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2015-06-02 07:01 - 2015-06-02 07:01 - 000181248 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\OppOperation\ObjPush.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\pbap\pbap.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\sap\sap.dll
2015-06-02 07:06 - 2015-06-02 07:06 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2015-06-02 07:05 - 2015-06-02 07:05 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\spp\spp.dll
2015-06-02 07:04 - 2015-06-02 07:04 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\Bluetooth Suite\Modules\Sync\Sync.dll
2018-06-14 09:49 - 2018-06-14 09:49 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll
2018-03-27 21:33 - 2018-03-27 21:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll
2018-10-15 11:11 - 2018-10-15 11:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 11:10 - 2018-10-15 11:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 11:38 - 2018-10-16 11:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 11:39 - 2018-10-16 11:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll
2018-10-15 11:12 - 2018-10-15 11:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll
2020-11-10 16:05 - 2020-11-10 16:05 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll
2018-10-15 11:05 - 2018-10-15 11:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll
2018-10-16 11:31 - 2018-10-16 11:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll
2018-10-15 11:09 - 2018-10-15 11:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll
2020-11-10 16:03 - 2020-11-10 16:03 - 000143360 _____ (TomTom) [File not signed] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:149 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:223 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:300 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3575 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3633 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:3731 [0]
AlternateDataStreams: C:\WINDOWS\SysWOW64\MSIHANDLE:95 [0]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\nádrž na vodu.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\nádrž na vodu.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\UPRAVENY NÁČRT.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Bezručovi\Desktop\UPRAVENY NÁČRT.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17prewin10.msn.com/?pc=DCTE
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17prewin10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000 -> DefaultScope {5858A0ED-6CB1-468F-ADD7-A89FA7CD1DF0} URL =
SearchScopes: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000 -> {5858A0ED-6CB1-468F-ADD7-A89FA7CD1DF0} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\sharepoint.com -> hxxps://nwt-myfiles.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-05 09:16 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bezručovi\Desktop\wallpaper-08-1920x1200.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "MyDriveConnect.exe"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2899849470-2927131367-1028810573-1000\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FC179FD1-969C-412D-A1A4-7F3DBFAAEC12}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{A3239A5E-DA0C-4211-8496-1EE9F8AAAD8F}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{615D5175-FDC4-41D5-9C64-9D9BA0E44B1D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{18389A72-6D5D-42DB-B7E1-B3CB5EA814BA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{FA4487EA-62B3-4C6F-9688-0FB838A96E70}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{95F6F53D-B2D6-4A1C-B489-E2B90A42A154}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{D9DB049B-CFD0-4BF6-81A3-2B4DE21BA020}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{7FAEE291-190A-4DFF-B55D-7905C29DBA41}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{29B655F0-F83E-4E7D-87F5-7712D9A7B080}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2216F652-9515-4255-B8D3-BAABE3F39EF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DE2B7091-00AF-48C9-9AF2-A1206C25F56E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD60D5C3-6D6F-450A-9532-2144C264DF35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0D89A61A-7E78-4109-87B5-A4AD887167F1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{819DE368-A535-4559-A777-AF407C60A245}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F936EC54-468C-45E1-80BD-7107B3738DDC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.167.586.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{26CB83DD-3C7B-4919-A1AC-F8EE24762F13}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{97B46452-730C-437D-A389-269362FCA454}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C8B1CAC2-FE52-4309-A92A-950EB717A1C6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE5A5B97-531D-42F6-ADB7-AF61DDB00ABC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{12D9D47C-3591-4C62-A4B8-A2D40D489739}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C022C7DA-37E0-4A8F-A60F-42FA3AB71AA8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{37430C27-D2AB-432C-A53F-E9502B25CE78}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CF238222-5759-4F19-B984-8267A49CEA1F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{834556E4-E86A-470D-B7C1-A2FBD555254C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{25B6CDB2-9EA0-4E94-BA90-8C7BE5B3D459}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{519CC936-8EA5-45E4-8440-1C4D14A49521}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{DFDF046F-F99A-4541-B03E-1457B9D6FE5F}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\wcct.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{F40A4328-8A07-45A2-A0E6-6592E08EC2E8}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{A6712A76-2B2B-46F7-BB47-75178EE5A951}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCDhcpService.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{F2BAE3F0-F943-42C1-B3E5-6A2143472D2C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DirectDisplay.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{6BBA6DA5-71A7-471B-81D7-244D024C359E}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DirectDisplay.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{87002775-5A19-489C-B201-9725262C8F6B}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCWpaSupplicant.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{530C9A92-9653-421E-86CF-BB164CCDB22D}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\DirectConnect\DCWpaSupplicant.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{C0DBC857-BF75-40EF-8802-566074513A87}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe (Qualcomm Atheros -> ) [File not signed]
FirewallRules: [{0A32B12E-7685-4250-B49D-834A75694933}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\spectral\SocketServer.exe (Qualcomm Atheros -> ) [File not signed]
FirewallRules: [{2EBB5601-DBB9-403B-B6CF-2A7C3FD16B89}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{8402B537-723F-43BE-81D2-60A83F3BDF89}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiC.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{81FC29BA-5508-4518-B1CB-F41A4F9470AC}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{DA1400EB-5215-4A25-8115-FCB1C8EEEE86}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCMgr.exe (Qualcomm Atheros -> Qualcomm Atheros Inc.) [File not signed]
FirewallRules: [{2C83D7A5-9C48-472B-B9D6-38B7C4B6150C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCICS.exe => No File
FirewallRules: [{D45010D8-D95F-4546-A154-8E600858952E}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCICS.exe => No File
FirewallRules: [{F71F7BD3-88B5-4820-9DA7-025FDC117427}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCSrvc.exe => No File
FirewallRules: [{2711D0AF-94EF-4BA1-BDCA-436F68035F02}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\AWiCSrvc.exe => No File
FirewallRules: [{7AD8E06B-9B2E-4903-B8D8-5F3D5E819D7C}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DiagConsole.exe => No File
FirewallRules: [{DDF95730-B2B6-42AE-AA8F-DA225670C3F7}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\awic\DiagConsole.exe => No File
FirewallRules: [{000B8735-43F3-4F3E-ABCC-73347B0154A7}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
FirewallRules: [{42992FC8-8C79-4031-A289-2B9D9F51DCF9}] => (Allow) C:\Program Files (x86)\Dell\Dell Unified Wireless Suite\ihvs\AWiCDiag.exe (Qualcomm Atheros -> Qualcomm Atheros, Inc.) [File not signed]
FirewallRules: [TCP Query User{C7E56FD1-13ED-4870-900D-CA7A3895E047}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{D25CD9C3-7F00-4146-88E2-7569B55BFC16}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [{D0DCE10F-DF5D-4B2E-BF38-984D53EA5359}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{76577C28-BD9F-4731-94E2-6AD3BE428C9E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{39570E38-5EAE-40A4-B999-3317DBB186F7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D69A36AF-597F-4852-9D8D-D9E25419DE84}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{67CA71B3-E639-4DA0-A8D1-A17423154A3E}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3D857367-1C5F-4138-B0EF-6B2FA1AB8D90}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20B2F35B-DCAD-477D-87E4-6FC0C6FED185}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/03/2021 05:37:46 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/30/2021 04:07:26 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (10/30/2021 03:39:34 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/17/2021 07:47:48 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/17/2021 07:44:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CompatTelRunner.exe, verze: 10.0.19645.1016, časové razítko: 0x9513fef7
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.610, časové razítko: 0xe5d7ed5c
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000fed29
ID chybujícího procesu: 0x27bc
Čas spuštění chybující aplikace: 0x01d7b15a1108ce47
Cesta k chybující aplikaci: C:\WINDOWS\system32\CompatTelRunner.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 0582dfe8-a35f-48fc-9e88-81ee55e93617
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/17/2021 07:16:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LockApp.exe verze 10.0.19041.423 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1d5c

Čas spuštění: 01d7c382c8376b93

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

ID hlášení: a738cf0d-42de-4358-93f8-0e2b8f96ab44

Úplný název balíčku s chybou: Microsoft.LockApp_10.0.19041.423_neutral__cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: WindowsDefaultLockScreen

Typ zablokování: Cross-thread

Error: (09/22/2021 05:00:50 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (09/22/2021 04:34:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 2796, identifikátor PID ProfSvc: 1140.


System errors:
=============
Error: (10/30/2021 03:31:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:34:20, ‎18.‎10.‎2021) bylo neočekávané.

Error: (10/20/2021 06:42:09 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby gupdate s argumenty /comsvc za účelem spuštění serveru:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/20/2021 06:42:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/20/2021 06:42:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (10/17/2021 07:14:44 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby gupdate s argumenty /comsvc za účelem spuštění serveru:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/17/2021 07:14:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/17/2021 07:14:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (09/24/2021 04:43:44 PM) (Source: DCOM) (EventID: 10010) (User: BEZRUCOVI-PC)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.423_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.BackgroundTransferTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2021-11-03 17:42:05
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\setup\uat_3548.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-11-03 17:35:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-10-30 17:07:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. 1.2.1 06/20/2016
Motherboard: Dell Inc. 09DX9D
Processor: Intel(R) Core(TM) i3-6100U CPU @ 2.30GHz
Percentage of memory in use: 69%
Total physical RAM: 8012.36 MB
Available physical RAM: 2429.27 MB
Total Virtual: 16204.36 MB
Available Virtual: 11136.33 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:451.99 GB) (Free:315.57 GB) NTFS

\\?\Volume{dffe4f53-0000-0000-0000-800200000000}\ (RECOVERY) (Fixed) (Total:13.73 GB) (Free:3.86 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: DFFE4F53)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: Kontrola notebooku

Napsal: 04 lis 2021 18:01
od Rudy
Zdravím!
Spustte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz