VIRY.CZ

Dobrý večer, mohu poprosit o kontrolu logu? je problém s vytížením procesoru a celkove s výkonem, ukončováním aplikací, atd.. Děkuji za Váš čas..


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
Ran by Helena (administrator) on LAPTOP-FN89QS83 (LENOVO 82C5) (20-08-2022 21:58:49)
Running from C:\Users\Helena\Downloads
Loaded Profiles: Helena
Platform: Microsoft Windows 11 Pro Version 21H2 22000.856 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(BatteryWidgetAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(GenericTelemetryAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(SmartInteractAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudPrefs.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudPrefs.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <8>
(C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.565.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.54\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEMN.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~2.INF\DAX3API.exe
(ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (HP Inc. -> Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\BatteryWidgetHost.exe <4>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\105.0.5195.5\remoting_host.exe <2>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4b31d9b38e2bb506\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(sihost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(sihost.exe ->) (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudOutlookConfig64.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mmgaserver.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.565.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1085224 2020-06-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [213760 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-06-22] (Power Software Limited -> Power Software Ltd)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642320 2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Helena\AppData\Local\Microsoft\Teams\Update.exe [2508480 2022-07-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [2572960 2021-12-04] (HP Inc. -> Hewlett-Packard Co.)
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [MicrosoftEdgeAutoLaunch_FEC2D14AA1F15DAD90F56E6F9A07DBED] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [37054552 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Run: [BatteryWidgetHost] => C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\BatteryWidgetHost.exe [140544352 2022-01-07] (Lenovo -> Lenovo)
HKLM\...\Print\Monitors\HP 5C12 Status Monitor: C:\WINDOWS\system32\hpinksts5C12LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 6700): C:\WINDOWS\system32\HPDiscoPM5C12.dll [741536 2021-12-04] (HP Inc. -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.82\Installer\chrmstp.exe [2022-08-17] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\Helena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - .lnk [2021-12-19]
ShortcutAndArgument: Sledovat výstrahy inkoustu - .lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 6700\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3CRDSGS105RQ;CONNECTION=NW;MONITOR=1;
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C43D68-2DDF-4522-A365-D89ECD50CA95} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0E2AC551-75EC-4903-8CD1-B6794AE1723C} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-09] (Microsoft Windows -> Microsoft Corporation)
Task: {113DDC7B-8E92-41BB-9751-9F31249FC5B0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1189C31D-5F87-4C50-9444-EAAA51B38895} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3597773242-260072134-1104405412-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1861C8AA-A3A1-457F-AA44-AB3EE88D536E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {2C1F4BDD-C355-412F-A8FA-BC98948F2DFF} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-09] (Microsoft Windows -> Microsoft Corporation)
Task: {2F49640D-5A97-4E0F-B405-B7571CC94747} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {3D8023B2-D076-42B6-87CC-370F6EDAECFE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DD08DFD-206F-4224-A9D8-F027D275959D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1e6489c6-121b-4934-a7ca-bcdf3d2f7729 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {3FFF843B-ECA6-4D5D-B274-AADD5A293294} - System32\Tasks\CCleanerSkipUAC - Helena => C:\Program Files\CCleaner\CCleaner.exe [31101528 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4986592E-6CA4-4E51-A23D-432935418E20} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8257765a-58a4-4392-a26a-32ecd66915d0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {4E621189-2048-45B7-9857-CEA860076C3B} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {57BD0CB3-EECC-4155-B2A6-58EBBFA62AA5} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {5D370E42-401C-4B69-8102-B2AF68D8843C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {61168016-2AE5-409B-ACE6-5A347F89B761} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {63A783BC-A8FE-4901-9A55-47417CBC6A7C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {65359092-8E80-49CE-859A-78CC9801985C} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4928768 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
Task: {68AF6371-F996-42DC-81CC-CA8C60A0181F} - System32\Tasks\Lenovo\LenovoWelcomeTask => C:\Program Files (x86)\Lenovo\LenovoWelcome\x86\LenovoWelcomeTask.exe [1555352 2022-04-22] (Lenovo -> Lenovo Group Ltd.)
Task: {6B9C7C66-D267-4CD1-A7A3-BA009BB97837} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {6F609CA9-19A5-4BAA-8D12-2DB85EF38781} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {79389B71-8711-49D6-934D-8FB9140C3F26} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {79DC8FEA-CADC-4A5B-8366-49E9BD6386B9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B14C43E-BEF4-4E83-A822-73AFA0A60BAE} - System32\Tasks\HPCustParticipation HP Officejet 6700 => C:\Program Files\HP\HP Officejet 6700\Bin\HPCustPartic.exe [4119200 2021-12-04] (HP Inc. -> Hewlett-Packard Co.)
Task: {7D49D0C1-9FFB-419D-B7AD-3BBDE057398B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7FFA5CEE-B414-45CD-862C-543945CCBA03} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {8504A8F3-94E6-481F-9997-1FB28C6F6D4A} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {96903935-2E56-49A2-B4F8-D14C2F5D7994} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {9819613C-DBFB-48E2-9536-D2CB0CABC570} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [147864 2022-05-12] (Lenovo -> Lenovo Group Ltd.)
Task: {A1B2A4A8-FBFE-4764-8E0B-C73019AEE430} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b8c1dd8a-50b1-472d-8343-9ddc199fae8e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A1EEC0C9-8C47-4B9C-B959-1EA25A1DA0EE} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {A4560DC7-3049-457E-9AD6-5C605E243EEA} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {AE31DABA-E3AD-44A4-A92D-05B3E6A33634} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-08-19] (Avast Software s.r.o. -> Avast Software)
Task: {B73FD754-8B9F-4AF6-A0EA-0D054952B9DF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BABD4BFF-4366-45EF-8F2F-B02E72F4D2B8} - System32\Tasks\Lenovo\LenovoWelcomeLauncher => C:\Program Files (x86)\Lenovo\LenovoWelcome\x86\LenovoWelcome.exe [1000856 2022-04-22] (Lenovo -> Lenovo Group Ltd.)
Task: {BBDB06BB-0E7A-4A75-B729-726633D0F10A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {C3965C6C-7548-41FA-83EE-31DA1FE59E95} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [144534560 2022-08-19] (Microsoft Windows -> Microsoft Corporation)
Task: {CAD9E1FD-69ED-4D49-9157-B0D2205F6012} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\820d2cbb-6026-45d7-aa5c-75577a556b25 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {D8EF2552-0EF5-4353-A191-2D758297FA96} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-07-18] (Piriform Software Ltd -> Piriform)
Task: {E013F8AE-2AC3-45F2-8F8B-6F6E383339D7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {E2EA1BA1-61D2-4B71-BC9F-B523409C9C3D} - System32\Tasks\Lenovo\LenovoWelcomeUninstall => C:\Program Files (x86)\Lenovo\LenovoWelcome\x86\LenoveWelcomeUninstall.exe [17816 2022-04-22] (Lenovo -> Lenovo Group Ltd.)
Task: {E6855607-F57E-4898-BBE5-C6296F281BFE} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0e3e0d1e-9987-4d22-9ef7-ac8ebafed6f9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {EC88F204-F981-4127-8AAB-7021512A958C} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-19] (HP Inc. -> HP Inc.)
Task: {ED988685-2C90-44A7-80D0-DC97E80F8466} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-19] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8195410e-249b-4da6-82bc-2dee89fab267}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Helena\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-20]
Edge Notifications: Default -> hxxps://teams.microsoft.com
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Default [2022-08-19]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ714G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Záložky na iCloudu) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-05-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-28]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-01-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR Profile: C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-20]
CHR Profile: C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-08-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-25]
CHR Profile: C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-08-19]
CHR HomePage: Profile 2 -> hxxp://o2tv.cz/
CHR StartupUrls: Profile 2 -> "hxxps://www.seznam.cz/"
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-06-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-25]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-04-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Helena\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-25]
CHR Profile: C:\Users\Helena\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8507448 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [589568 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [589056 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-07-18] (Piriform Software Ltd -> )
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\105.0.5195.5\remoting_host.exe [74056 2022-07-24] (Google LLC -> Google LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncHelper.exe [3389840 2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-07-19] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1832944 2021-08-12] (Lenovo -> Lenovo(beijing) Limited)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\OneDriveUpdaterService.exe [3830160 2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6215960 2022-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41832 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [235576 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389120 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258048 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104960 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47976 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275024 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553928 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113968 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [89032 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [859872 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [670776 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221512 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324840 2022-08-19] (Avast Software s.r.o. -> AVAST Software)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-20 21:58 - 2022-08-20 21:59 - 000034661 _____ C:\Users\Helena\Downloads\FRST.txt
2022-08-20 21:58 - 2022-08-20 21:59 - 000000000 ____D C:\FRST
2022-08-20 21:57 - 2022-08-20 21:57 - 002371072 _____ (Farbar) C:\Users\Helena\Downloads\FRST64.exe
2022-08-20 21:38 - 2022-08-20 21:38 - 056595256 _____ (Tweaking.com) C:\Users\Helena\Downloads\tweaking.com_windows_repair_aio_setup (1).exe
2022-08-20 21:36 - 2022-08-20 21:36 - 000001010 _____ C:\Users\Helena\Desktop\JRT.txt
2022-08-20 21:35 - 2022-08-20 21:35 - 000000000 ____D C:\Users\Helena\AppData\Local\CrashDumps
2022-08-20 21:33 - 2022-08-20 21:33 - 000002070 _____ C:\Users\Helena\Desktop\Rkill.txt
2022-08-20 21:31 - 2022-08-20 21:31 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-LAPTOP-FN89QS83-Windows-10-Pro-(64-bit).dat
2022-08-20 21:31 - 2022-08-20 21:31 - 000000000 ____D C:\RegBackup
2022-08-20 21:29 - 2022-08-20 21:29 - 000003784 _____ C:\WINDOWS\system32\Tasks\Tweaking.com - Windows Repair Tray Icon
2022-08-20 21:29 - 2022-08-20 21:29 - 000002243 _____ C:\Users\Helena\Desktop\Tweaking.com - Windows Repair.lnk
2022-08-20 21:29 - 2022-08-20 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2022-08-20 21:29 - 2022-08-20 21:29 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2022-08-20 21:28 - 2022-08-20 21:29 - 000388897 _____ C:\WINDOWS\Tweaking.com - Windows Repair Setup Log.txt
2022-08-20 21:28 - 2022-08-20 21:28 - 056595256 _____ (Tweaking.com) C:\Users\Helena\Downloads\tweaking.com_windows_repair_aio_setup.exe
2022-08-20 21:28 - 2022-08-20 21:28 - 001790024 _____ (Malwarebytes) C:\Users\Helena\Downloads\JRT.exe
2022-08-20 21:27 - 2022-08-20 21:27 - 008551608 _____ (Malwarebytes) C:\Users\Helena\Downloads\AdwCleaner.exe
2022-08-20 21:27 - 2022-08-20 21:27 - 005659583 _____ (Swearware) C:\Users\Helena\Downloads\ComboFix.exe
2022-08-20 21:27 - 2022-08-20 21:27 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Helena\Downloads\rkill.exe
2022-08-19 23:40 - 2021-07-04 22:41 - 026671920 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 013499184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 001859600 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-19 23:40 - 2021-07-04 22:41 - 001859600 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-08-19 23:40 - 2021-07-04 22:41 - 001440256 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-19 23:40 - 2021-07-04 22:41 - 001440256 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-08-19 23:40 - 2021-07-04 22:41 - 001102280 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 001102280 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000956384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000956384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000614168 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000429872 _____ C:\WINDOWS\system32\ze_loader.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000309640 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000257048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000173064 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000148336 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-08-19 23:40 - 2021-07-04 22:41 - 000145720 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-08-19 23:40 - 2021-07-04 22:39 - 000354640 _____ C:\WINDOWS\system32\ControlLib.dll
2022-08-19 23:01 - 2022-08-20 21:17 - 000007615 _____ C:\Users\Helena\AppData\Local\Resmon.ResmonCfg
2022-08-19 22:45 - 2022-08-19 22:45 - 000000000 ____D C:\WINDOWS\Firmware
2022-08-19 22:25 - 2022-08-20 21:45 - 000000000 ____D C:\Users\Helena\AppData\Roaming\vantage-widget-host
2022-08-19 22:14 - 2022-08-19 22:14 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-19 22:10 - 2022-08-19 22:10 - 000000000 ___HD C:\$WinREAgent
2022-08-19 20:01 - 2022-08-19 20:01 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-08-19 20:00 - 2022-08-19 20:00 - 000170436 _____ C:\Users\Helena\Documents\cc_20220819_200008.reg
2022-08-19 19:59 - 2022-08-19 19:59 - 000000000 ____D C:\ProgramData\Piriform
2022-08-19 19:55 - 2022-08-20 21:46 - 000000000 ____D C:\Program Files\CCleaner
2022-08-19 19:55 - 2022-08-19 19:55 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-19 19:55 - 2022-08-19 19:55 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Helena
2022-08-19 19:55 - 2022-08-19 19:55 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-08-19 19:55 - 2022-08-19 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-08-19 19:54 - 2022-08-19 19:54 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2022-08-19 19:54 - 2022-08-19 19:54 - 000002159 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-08-19 19:54 - 2022-08-19 19:54 - 000000000 ____D C:\Users\Helena\AppData\Roaming\Avast Software
2022-08-19 19:54 - 2022-08-19 19:54 - 000000000 ____D C:\Users\Helena\AppData\Local\Avast Software
2022-08-19 19:52 - 2022-08-19 19:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-08-19 19:51 - 2022-08-20 20:52 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-08-19 19:51 - 2022-08-19 19:52 - 049899376 _____ (Piriform Software Ltd) C:\Users\Helena\Downloads\ccsetup602.exe
2022-08-19 19:51 - 2022-08-19 19:52 - 000670776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000859872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000553928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000389120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000324840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000275024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000270592 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-08-19 19:51 - 2022-08-19 19:51 - 000258048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000235576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000221512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000113968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000104960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000089032 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000047976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000041832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000024528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-08-19 19:51 - 2022-08-19 19:51 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2022-08-19 19:49 - 2022-08-20 21:44 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-19 19:49 - 2022-08-19 19:49 - 000000000 ____D C:\Program Files\Avast Software
2022-08-19 19:48 - 2022-08-19 19:48 - 000268496 _____ (AVAST Software) C:\Users\Helena\Downloads\avast_free_antivirus_setup_online.exe
2022-08-19 19:41 - 2022-08-19 19:41 - 000000000 ____D C:\AdwCleaner
2022-08-19 19:40 - 2022-08-19 19:41 - 008551608 _____ (Malwarebytes) C:\Users\Helena\Downloads\adwcleaner_8.3.2.exe
2022-08-10 15:10 - 2022-08-10 15:10 - 000000000 ____D C:\Users\Helena\Desktop\Nová složka
2022-08-09 16:15 - 2022-08-09 16:15 - 000000000 ____D C:\ProgramData\AVG
2022-08-09 15:30 - 2022-08-09 15:30 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-09 15:30 - 2022-08-09 15:30 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-09 15:30 - 2022-08-09 15:30 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-09 15:30 - 2022-08-09 15:30 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-09 14:11 - 2022-08-09 14:11 - 000154867 _____ C:\Users\Helena\Downloads\Vypis_z_uctu_0-133833073_z_20220731.pdf
2022-08-08 18:19 - 2022-08-08 18:19 - 000769036 _____ C:\Users\Helena\Downloads\prilohy_189135.zip
2022-08-01 19:57 - 2022-08-01 19:58 - 000908869 _____ C:\Users\Helena\Downloads\priloha_1066584103_0_EX_4108_16-92.pdf
2022-07-31 17:17 - 2022-07-31 17:17 - 000984172 _____ C:\Users\Helena\Downloads\409084.PDF
2022-07-27 06:53 - 2022-07-27 08:13 - 000000000 ____D C:\Users\Helena\Desktop\Blue Fox
2022-07-25 14:05 - 2022-07-25 14:05 - 000000923 _____ C:\Users\Helena\Downloads\DPHKH-65424891-2022-2q_radne_24.07.2022_Veta.xml
2022-07-25 14:04 - 2022-07-25 14:04 - 000000510 _____ C:\Users\Helena\Downloads\DPHDP-65424891-2022-2q_radne_24.07.2022_Veta.xml
2022-07-22 21:20 - 2022-07-22 21:20 - 000638995 _____ C:\Users\Helena\Downloads\priloha_1064187228_0_Žádost zaměstnavatele - srážky-2022-07-22-14-39-28.pdf
2022-07-21 11:47 - 2022-07-21 11:47 - 000156549 _____ C:\Users\Helena\Downloads\Vypis_z_uctu_133833073_z_20220531.pdf
2022-07-21 11:46 - 2022-07-21 11:46 - 000157019 _____ C:\Users\Helena\Downloads\Vypis_z_uctu_133833073_z_20220630.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-20 21:52 - 2022-04-24 23:31 - 001626360 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-20 21:52 - 2021-06-05 19:22 - 000692670 _____ C:\WINDOWS\system32\perfh005.dat
2022-08-20 21:52 - 2021-06-05 19:22 - 000143218 _____ C:\WINDOWS\system32\perfc005.dat
2022-08-20 21:52 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-08-20 21:49 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-08-20 21:46 - 2021-01-18 16:19 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-20 21:44 - 2022-04-24 23:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-20 21:44 - 2022-04-24 23:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-20 21:44 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-20 21:44 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-20 21:44 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-20 21:44 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-08-20 21:44 - 2021-01-18 21:23 - 000000000 ___RD C:\Users\Helena\iCloudDrive
2022-08-20 21:44 - 2021-01-18 16:16 - 000000000 __SHD C:\Users\Helena\IntelGraphicsProfiles
2022-08-20 21:44 - 2020-08-05 00:56 - 000000000 ___HD C:\Intel
2022-08-20 21:44 - 2020-05-06 20:33 - 000012288 ___SH C:\DumpStack.log.tmp
2022-08-20 21:24 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-20 21:14 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-19 22:56 - 2020-08-05 00:49 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-19 22:53 - 2021-09-17 19:36 - 000000000 ____D C:\Users\Helena\AppData\Local\D3DSCache
2022-08-19 22:25 - 2021-11-12 18:43 - 000007140 _____ C:\WINDOWS\storelibdebug.txt
2022-08-19 22:17 - 2022-04-24 23:25 - 000470184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-19 22:17 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-19 22:17 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-19 22:17 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-19 22:14 - 2022-04-24 23:25 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-19 21:42 - 2021-01-24 09:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-19 20:07 - 2021-01-24 09:42 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-19 20:06 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-19 19:57 - 2022-07-17 20:36 - 000000000 ____D C:\WINDOWS\Minidump
2022-08-19 19:57 - 2022-04-17 13:41 - 000000000 ___DC C:\WINDOWS\Panther
2022-08-19 19:53 - 2020-08-05 00:49 - 000000000 ____D C:\Program Files\Lenovo
2022-08-19 19:51 - 2021-06-05 14:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-19 19:45 - 2021-01-18 16:18 - 000000000 ___RD C:\Users\Helena\OneDrive
2022-08-19 19:44 - 2021-09-08 15:23 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-08-17 20:39 - 2021-01-18 16:19 - 000002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-17 20:39 - 2021-01-18 16:19 - 000002217 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-16 11:12 - 2020-08-05 00:50 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-15 16:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-08-15 14:08 - 2022-04-24 23:29 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3597773242-260072134-1104405412-1001
2022-08-15 14:08 - 2022-04-24 23:29 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-08-15 14:08 - 2021-02-04 08:50 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-15 14:08 - 2021-01-18 16:16 - 000000000 ____D C:\Users\Helena\AppData\Local\Packages
2022-08-15 14:08 - 2021-01-18 16:16 - 000000000 ____D C:\ProgramData\Packages
2022-08-10 19:48 - 2021-08-05 07:19 - 000000000 ____D C:\Users\Helena\Desktop\Práce
2022-08-10 15:45 - 2021-09-16 10:10 - 000000000 ____D C:\Users\Helena\AppData\Local\ElevatedDiagnostics
2022-08-10 15:17 - 2022-04-24 23:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-08-10 15:17 - 2021-12-31 11:29 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-10 15:17 - 2021-12-31 11:29 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-08-09 15:58 - 2021-01-18 16:24 - 000002684 _____ C:\Users\Helena\Desktop\Vzdálená plocha Chrome.lnk
2022-08-09 15:58 - 2021-01-18 16:24 - 000000000 ____D C:\Users\Helena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2022-08-09 15:36 - 2021-06-05 19:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-09 15:36 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-07-28 18:31 - 2021-01-18 20:46 - 000000000 ____D C:\Users\Helena\Desktop\Střelnice
2022-07-28 02:49 - 2022-04-24 23:26 - 000000000 ____D C:\Users\Helena
2022-07-27 06:27 - 2022-04-24 23:29 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

==================== Files in the root of some directories ========

2022-08-19 23:01 - 2022-08-20 21:17 - 000007615 _____ () C:\Users\Helena\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Dobrý den,děkuji za reakci

# -------------------------------
# Malwarebytes AdwCleaner 8.3.2.0
# -------------------------------
# Build: 03-23-2022
# Database: 2022-06-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-21-2022
# Duration: 00:00:10
# OS: Windows 10 Pro
# Scanned: 32053
# Detected: 5


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Users\Helena\AppData\Local\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1


AdwCleaner[S00].txt - [1861 octets] - [19/08/2022 19:41:26]
AdwCleaner[S01].txt - [1922 octets] - [19/08/2022 19:54:00]
AdwCleaner[S02].txt - [1983 octets] - [20/08/2022 21:37:23]
AdwCleaner[S03].txt - [2044 octets] - [21/08/2022 15:03:54]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S04].txt ##########

Preinstalled jsou OK, jsou to utiluity od Lenovo. Vyčistíme zbytečnosti. Přidejte ještě log Addition a dočistíme ručně od zbytečností (najdete ho v souboru addition.txt v C:\Users\Helena\Downloads).

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Ran by Helena (20-08-2022 21:59:33)
Running from C:\Users\Helena\Downloads
Microsoft Windows 11 Pro Version 21H2 22000.856 (X64) (2022-04-24 21:29:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3597773242-260072134-1104405412-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3597773242-260072134-1104405412-503 - Limited - Disabled)
Guest (S-1-5-21-3597773242-260072134-1104405412-501 - Limited - Disabled)
Helena (S-1-5-21-3597773242-260072134-1104405412-1001 - Administrator - Enabled) => C:\Users\Helena
WDAGUtilityAccount (S-1-5-21-3597773242-260072134-1104405412-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.002.20191 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.7.6025 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.02 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.82 - Google LLC)
HP Officejet 6700 Nápověda (HKLM-x32\...\{E1AE0CB7-1333-4728-8520-CB3F88A252B4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Chrome Remote Desktop Host (HKLM-x32\...\{1FFC43DF-028F-473A-90D6-B9AF536306DA}) (Version: 105.0.5195.5 - Google LLC)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iCloud Outlook (HKLM\...\{BF2241BF-20CC-490B-B7BE-761B80E20114}) (Version: 11.6.0.32 - Apple Inc.)
Intel(R) Chipset Device Software (HKLM\...\{00C43022-CFDA-4942-9D3F-04199C91C939}) (Version: 10.1.18121.8164 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{37942a92-9e3f-4d70-9b5c-5955cbc54505}) (Version: 10.1.18121.8164 - Intel(R) Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.14.0 - Lenovo Group Ltd.)
Lenovo Welcome (HKLM-x32\...\Lenovo Welcome) (Version: 3.5.0.40 - Lenovo Group Ltd.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.15427.20210 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 104.0.1293.63 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 104.0.1293.54 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.15427.20210 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.151.0717.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\Teams) (Version: 1.5.00.17656 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20148 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
Studie vylepšování produktu HP Officejet 6700 (HKLM\...\{D43AEBED-5073-4AFC-AE31-D61366B54354}) (Version: 28.1.1323.0 - Hewlett-Packard Co.)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.13.0 - Tweaking.com)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
Základní software zařízení HP Officejet 6700 (HKLM\...\{B6DED685-9A37-4B30-B563-D2FA81A9738D}) (Version: 28.1.1323.0 - Hewlett-Packard Co.)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20602.609.0_x64__rz1tebttyb220 [2021-01-18] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-29] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-08-12] (HP Inc.)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa [2022-08-07] (Apple Inc.) [Startup Task]
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4 [2022-06-26] (LENOVO INC) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2207.2.0_x64__k1h2ywk1493x8 [2022-08-04] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-04-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-04-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-28] (Microsoft Studios) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-08-20] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2020-08-05] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-14] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0 [2022-08-05] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3597773242-260072134-1104405412-1001_Classes\CLSID\{0D9927A4-3001-45A2-9289-CE8C29B34E84} -> [Fotky na iCloudu] => C:\Users\Helena\Pictures\iCloud Photos\Photos [2021-01-18 21:23]
CustomCLSID: HKU\S-1-5-21-3597773242-260072134-1104405412-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Helena\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22147.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3597773242-260072134-1104405412-1001_Classes\CLSID\{FE40F998-F8E4-499D-9C56-8821BF61DDC5} -> [iCloud Drive] => C:\Users\Helena\iCloudDrive [2021-01-18 21:23]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-19] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Helena\Desktop\Helena - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Helena\Desktop\Vzdálená plocha Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\Helena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb

==================== Loaded Modules (Whitelisted) =============

2022-01-07 03:28 - 2022-01-07 03:28 - 000264704 _____ () [File not signed] \\?\C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\resources\app\src\native_modules\VantageRpc.node
2022-04-26 18:55 - 2022-04-26 18:55 - 001469440 _____ () [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6\e_sqlite3.dll
2022-01-07 03:28 - 2022-01-07 03:28 - 002703360 _____ () [File not signed] C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\ffmpeg.dll
2022-01-07 03:28 - 2022-01-07 03:28 - 000441856 _____ () [File not signed] C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\libegl.dll
2022-01-07 03:28 - 2022-01-07 03:28 - 007827968 _____ () [File not signed] C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\1.0.0.75\BatteryWidgetHost\libglesv2.dll
2022-07-19 06:49 - 2022-07-19 06:49 - 123227136 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6\HP.Smart.dll
2022-04-29 01:22 - 2022-04-29 01:22 - 007170048 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6\HPPageLift.UWP.dll
2022-07-19 06:49 - 2022-07-19 06:49 - 000133632 _____ (HP Inc) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6\HP.OneDriver.UserForms.dll
2022-04-29 01:22 - 2022-04-29 01:22 - 000013824 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2022-04-22 06:44 - 2022-04-22 06:44 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2020-08-05 00:50 - 2020-08-05 00:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppvIsvSubsystems64.dll
2020-08-05 00:50 - 2020-08-05 00:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3597773242-260072134-1104405412-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-3597773242-260072134-1104405412-1001 -> DefaultScope {C388D4D5-6929-4D4E-BA4A-03EEC08E5214} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-07] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3597773242-260072134-1104405412-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\lenovo\lenovowallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_FEC2D14AA1F15DAD90F56E6F9A07DBED"
HKU\S-1-5-21-3597773242-260072134-1104405412-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CF7378B6-E1C7-43E9-8926-50DFB94F0077}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{83B48BB9-BD3B-4B8C-BD02-DF5296D31262}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E236EFC-B96B-4125-B184-E9A4FD348F02}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D19ED435-9E43-4CBF-8434-71A41B7EA750}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{E1F4973B-9E1A-46DB-A2D2-D0F9E13558CE}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{A5470339-A654-4674-8A93-003B4E157061}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{DC3C29C7-261D-418C-B67E-7CEFBF9FF0C8}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{F4AD0703-2034-4BB6-96DA-68061B38F207}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{60475EEB-B3AE-470B-B5F3-1ECB076D644E}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{9667611B-B17E-4928-A1BF-BAD469003995}C:\users\helena\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\helena\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{11D98201-4A5C-4781-BE7B-16A397DBBD97}C:\users\helena\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\helena\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{5D5E5405-1F6E-4DA1-ADA3-BE770721C4F0}C:\users\helena\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\helena\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8B745277-D752-428B-9211-EA9032BFE0DE}C:\users\helena\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\helena\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8C33AAA9-C79A-4581-9148-6BA35751409B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E36E4C3-E51A-4800-BD93-644F2E003F25}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4ACFDBA7-2242-49A8-9D2F-EC0BDA9FF846}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22042.702.1226.2352_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0B362A1E-E25C-4075-94D4-161E70973EB2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22042.702.1226.2352_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{26F7BAE0-9164-4088-9774-D2AF68AF653E}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\105.0.5195.5\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{9550E110-66A5-4285-B44E-052685A00E2C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D6C0CA9F-DED5-4CF0-A462-8C00F0B4774E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FB7602DA-B0FC-4026-BE80-6445B79E28DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{350FE9E7-D2BC-4525-8209-B59861C39C4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4CA0475B-CC16-4ABC-A953-FD2F90E73BF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32CE48DC-A5E0-4DCD-8393-AFBE2ECD44C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C652D0BC-5BAC-4168-8FA6-1619656790F1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{13DF2C38-2227-408D-9AB7-682975392538}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.191.824.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B8F4CA42-AD53-491F-9FEC-FC2B81CD156E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30F0BC65-6617-48C3-B646-5AAE0C84FF54}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8CE868AB-4624-4F32-AEFE-E36C6C6C2D20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A902BE00-6BAD-4BA2-9426-09CC6F6182B1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7AC552CD-A995-4F22-89E6-1693EB45968E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18FBBE10-C668-48AF-A6E2-EC5B9510C4C4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{410B0672-BAF2-4564-AC54-6889371857A9}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DBD0ACC1-EB4E-4418-ACCC-5313E36C0B1E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

19-08-2022 20:06:30 Instalační služba modulů systému Windows
19-08-2022 22:10:26 Instalační služba modulů systému Windows
20-08-2022 21:34:58 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/20/2022 09:43:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SystemSettings.exe verze 10.0.22000.832 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1aa4

Čas spuštění: 01d8b4ccfe810c7b

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID hlášení: 98262adb-781f-4768-b097-e5f68879b81d

Úplný název balíčku s chybou: windows.immersivecontrolpanel_10.0.6.1000_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: microsoft.windows.immersivecontrolpanel

Typ zablokování: Cross-process

Error: (08/20/2022 09:35:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Widgets.exe, verze: 421.20070.485.0, časové razítko: 0x62d70851
Název chybujícího modulu: Widgets.exe, verze: 421.20070.485.0, časové razítko: 0x62d70851
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000aa5a5
ID chybujícího procesu: 0x59c0
Čas spuštění chybující aplikace: 0x01d8b4c9985c160e
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.565.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.565.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
ID zprávy: 44cecf22-2968-4c00-8f33-519a75f73ca1
Úplný název chybujícího balíčku: MicrosoftWindows.Client.WebExperience_421.20070.565.0_x64__cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App

Error: (08/20/2022 09:23:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Taskmgr.exe verze 10.0.22000.778 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 33bc

Čas spuštění: 01d8b4c9c185c7c1

Čas ukončení: 6

Cesta k aplikaci: C:\Windows\System32\Taskmgr.exe

ID hlášení: ea5e123b-4180-499a-8870-0a0694c2465c

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-thread

Error: (08/20/2022 09:17:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Taskmgr.exe verze 10.0.22000.778 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 4234

Čas spuštění: 01d8b4c8e978451e

Čas ukončení: 8

Cesta k aplikaci: C:\Windows\System32\Taskmgr.exe

ID hlášení: 85851a5f-e4a8-4513-909b-7dc24aaa6c4d

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-thread

Error: (08/20/2022 09:14:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IGCCTray.exe verze 1.100.3408.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 452c

Čas spuštění: 01d8b4c8ed739fb7

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe

ID hlášení: 7f4911d3-6d7f-40b8-83cc-d2f62fe29674

Úplný název balíčku s chybou: AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (08/20/2022 09:03:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Taskmgr.exe verze 10.0.22000.778 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 43d0

Čas spuštění: 01d8b4c5a91de69c

Čas ukončení: 4

Cesta k aplikaci: C:\Windows\System32\Taskmgr.exe

ID hlášení: dbfc1fc1-62f0-406d-b4a4-3bb135ff7f78

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-thread

Error: (08/19/2022 11:12:56 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (08/19/2022 11:12:56 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.


System errors:
=============
Error: (08/20/2022 09:35:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Realtek Audio Universal Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (08/20/2022 09:35:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Dolby DAX API Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/20/2022 09:12:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Spooler bylo dosaženo časového limitu (30000 ms).

Error: (08/20/2022 09:12:44 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.

Error: (08/20/2022 08:53:42 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Spooler bylo dosaženo časového limitu (30000 ms).

Error: (08/20/2022 08:48:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Spooler bylo dosaženo časového limitu (30000 ms).

Error: (08/20/2022 08:47:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Spooler bylo dosaženo časového limitu (30000 ms).

Error: (08/20/2022 08:47:27 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Spooler bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================
Date: 2022-08-18 15:37:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {395215CA-5A92-4D06-BEA7-D328A329DE70}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-08-17 20:56:18
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3AC13C31-1DC9-49DD-A52D-20B5B5ED898F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-08-15 14:26:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {89AACE85-7286-4CF4-B194-354F8A527C20}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-08-10 15:53:19
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {825439E8-ED15-414D-AF98-6DC0163FB000}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-08-09 13:24:54
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {AA05DFEC-3D0C-4AC3-9B59-910D236B1A17}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2022-07-29 18:49:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.371.942.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19400.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-07-29 18:49:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.371.942.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19400.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-07-29 18:49:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.371.942.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19400.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-06-27 17:13:51
Description:
Modul programu Antivirová ochrana v programu Microsoft Defender byl ukončen v důsledku neočekávané chyby.
Typ chyby: Zavěšení
Kód výjimky:
Zdroj: file:(null)

CodeIntegrity:
===============
Date: 2022-08-20 21:46:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-08-20 21:45:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2022-08-20 21:45:07
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Temp\asw377b28d736db7d57.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: LENOVO DKCN54WW 01/27/2022
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-1035G1 CPU @ 1.00GHz
Percentage of memory in use: 63%
Total physical RAM: 7987.24 MB
Available physical RAM: 2935.91 MB
Total Virtual: 16179.24 MB
Available Virtual: 10481.86 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:237.23 GB) (Free:79.86 GB) (Model: WDC PC SN530 SDBPMPZ-256G-1101) NTFS

\\?\Volume{3904563b-1eb0-49fc-88a6-0d228c93d102}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.24 GB) NTFS
\\?\Volume{6f937a45-e677-464a-9c8f-0159304ced4c}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 0B3E4CE8)

Partition: GPT.

==================== End of Addition.txt =======================

Děkuji. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1861C8AA-A3A1-457F-AA44-AB3EE88D536E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {2F49640D-5A97-4E0F-B405-B7571CC94747} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {61168016-2AE5-409B-ACE6-5A347F89B761} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
C:\DumpStack.log.tmp

EmptyTemp:
End

Uložte do C:\Users\Helena\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Ran by Helena (21-08-2022 19:05:45) Run:1
Running from C:\Users\Helena\Downloads
Loaded Profiles: Helena
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1861C8AA-A3A1-457F-AA44-AB3EE88D536E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {2F49640D-5A97-4E0F-B405-B7571CC94747} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {61168016-2AE5-409B-ACE6-5A347F89B761} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1861C8AA-A3A1-457F-AA44-AB3EE88D536E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1861C8AA-A3A1-457F-AA44-AB3EE88D536E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F49640D-5A97-4E0F-B405-B7571CC94747}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F49640D-5A97-4E0F-B405-B7571CC94747}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{61168016-2AE5-409B-ACE6-5A347F89B761}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{61168016-2AE5-409B-ACE6-5A347F89B761}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9554723 B
Java, Discord, Steam htmlcache => 0 B
Windows/system/drivers => 46507287 B
Edge => 0 B
Chrome => 55218343 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8162 B
NetworkService => 8162 B
Helena => 19502239 B

RecycleBin => 3080 B
EmptyTemp: => 126 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 21-08-2022 19:06:48)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 19:06:48 ====

Smazáno. Nastala nějaká změna?

Dobrý večer, s ntb už se dá slušně pracovat, ale problém se spouštěním služeb přetrvává.. Budu laborovat dál, děkuju za Vaši pomoc a čas

Problém se spouštěním služeb: https://cs.101-help.com/sluzby-windows- ... c59e046f4/ . Zatím nemáte zač!