Prosím o kontrolu logu

Zpráva

Petako1 · #1 Příspěvek od **Petako1** » 08 zář 2022 02:42

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(explorer.exe ->) () [File not signed] C:\Windows\FixCamera.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe <6>
(explorer.exe ->) (SONIX TECHNOLOGY CO. , LTD -> ) C:\Windows\vsnp325.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(taskeng.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [189664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [FixCamera] => C:\Windows\FixCamera.exe [20480 2007-07-11] () [File not signed]
HKLM\...\Run: [tsnp325] => C:\Windows\tsnp325.exe [270336 2007-04-21] () [File not signed]
HKLM\...\Run: [snp325] => C:\Windows\vsnp325.exe [835584 2007-05-10] (SONIX TECHNOLOGY CO. , LTD -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {6fc410e2-a914-11ec-92f0-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {b2fefaa9-51ce-11ec-983d-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {29A9613C-9DD2-4469-A04C-96D881320A52} - System32\Tasks\Opera scheduled Autoupdate 1634701159 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {3C4280FE-39F6-48EA-A329-B023DC04A600} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {48F610F0-F930-4165-8161-C8D6E9D88FB0} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4384480 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
Task: {53A8223A-4036-4B84-B3F2-A98ECF7003DF} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2020-12-28] () [File not signed]
Task: {6F254356-D8B6-4A0A-AD22-0392A0EBA952} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3072421295-1568666953-773495262-1001 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {776C5DC6-7003-4A17-939E-6E24296E0C1F} - System32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {7D517BF8-6C36-41AA-A97D-3D44B0413D94} - System32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {7E63C982-D82F-4D77-80BD-8B6A678F9C1F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1947984 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {845F4629-1CA4-46F8-BB40-5D93E60B5229} - System32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {A767D1E3-E916-4689-8851-CD8AAE569142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {E67969DF-49B1-414D-8821-8D2C25FC6997} - System32\Tasks\Opera scheduled assistant Autoupdate 1634701178 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Petr\AppData\Local\Programs\Opera\assistant" $(Arg0)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 %SystemRoot%\system32\NLAapi.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 03 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 05 %SystemRoot%\System32\mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 %SystemRoot%\System32\winrnr.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-07]
Edge Notifications: Default -> hxxps://moderation-v2.messagecontrol.net

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-13]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-09-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-21]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-13]

Opera:
=======
OPR Profile: C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable [2021-10-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7709720 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2016-03-21] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [39664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [198696 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [331200 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [213952 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97216 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [45376 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [232384 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [406816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-12-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [98816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [77976 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [699856 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [569032 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167432 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [273320 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
S3 iaStorA; C:\Windows\system32\drivers\iaStorA.sys [1992192 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28128 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\drivers\iusb3hcs.sys [19184 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3hub; C:\Windows\system32\drivers\iusb3hub.sys [396528 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3xhc; C:\Windows\system32\drivers\iusb3xhc.sys [817392 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 netvsc; C:\Windows\System32\DRIVERS\netvsc60.sys [126464 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 SNP325; C:\Windows\System32\DRIVERS\snp325.sys [10406016 2007-11-22] (SONIX TECHNOLOGY CO. , LTD -> Sonix Co. Ltd.)
S3 SynthVid; C:\Windows\System32\DRIVERS\VMBusVideoM.sys [19456 2010-11-20] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-08 03:22 - 2022-09-08 03:24 - 000013224 _____ C:\Users\Petr\Desktop\FRST.txt
2022-09-08 03:21 - 2022-09-08 03:23 - 000000000 ____D C:\FRST
2022-09-08 03:14 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Desktop\FRST.exe
2022-09-08 03:10 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Downloads\FRST.exe
2022-09-06 16:50 - 2022-09-06 16:52 - 000000102 ____H C:\Users\Petr\Documents\.~lock.Bez názvu 1.ods#
2022-09-05 14:02 - 2022-09-05 14:02 - 000365774 _____ C:\Users\Petr\Downloads\123981614.pdf
2022-09-05 13:53 - 2022-09-05 13:54 - 000183205 _____ C:\Users\Petr\Downloads\priloha_1078968799_0_MHMPXPJI7USA.PDF
2022-09-05 04:37 - 2022-09-06 16:50 - 000000102 ____H C:\Users\Petr\Downloads\.~lock.Sešit1_sady_082022 (1).xlsx#
2022-09-03 06:00 - 2022-09-03 06:00 - 000034206 _____ C:\Users\Petr\Downloads\win-tv.m3u
2022-08-28 08:20 - 2022-08-28 08:19 - 000238816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2022-08-28 08:20 - 2022-08-28 08:19 - 000167432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2022-08-25 16:21 - 2022-08-25 16:21 - 000345306 _____ C:\Users\Petr\Downloads\priloha_1075753934_1_usnesení_schválení_odd.pdf
2022-08-25 16:21 - 2022-08-25 16:21 - 000014764 _____ C:\Users\Petr\Downloads\priloha_1075753934_0_Textová zpráva.PDF
2022-08-25 15:41 - 2022-08-25 15:41 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček (1).pdf
2022-08-25 15:41 - 2022-08-25 15:41 - 000139145 _____ C:\Users\Petr\Downloads\Aktivační balíček (2).pdf
2022-08-25 15:36 - 2022-08-25 15:36 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček.pdf
2022-08-25 15:31 - 2022-08-25 15:31 - 000068043 _____ C:\Users\Petr\Downloads\priloha_1075725767_0_dopis_1.pdf
2022-08-19 06:44 - 2022-09-06 16:50 - 000007368 _____ C:\Users\Petr\Downloads\Sešit1_sady_082022 (1).xlsx
2022-08-16 03:45 - 2022-08-16 03:45 - 000247965 _____ C:\Users\Petr\Downloads\priloha_1071826434_0_CTU0X08VJ6T3 - Výzva k zaplacení správního....pdf
2022-08-14 09:46 - 2022-08-14 09:46 - 000058438 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540715.webp
2022-08-14 09:45 - 2022-08-14 09:46 - 000059718 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540706.webp
2022-08-11 17:24 - 2022-08-11 17:24 - 000001264 _____ C:\Users\Public\Desktop\Skype.lnk
2022-08-11 17:23 - 2022-08-20 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-11 17:19 - 2022-08-11 17:20 - 088567136 _____ (Skype Technologies S.A.) C:\Users\Petr\Downloads\Skype-8.86.0.409.exe
2022-08-11 10:20 - 2022-08-11 10:20 - 000149379 _____ C:\Users\Petr\Downloads\namitkaprotivyrizenireklamace-prijemce.pdf
2022-08-11 02:11 - 2022-09-01 22:08 - 000007256 _____ C:\Users\Petr\Downloads\Sešit1_sady_08092022.xlsx
2022-08-11 01:57 - 2022-08-11 01:57 - 000515297 _____ C:\Users\Petr\Downloads\2923048213.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-08 03:21 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-09-08 03:21 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-09-08 03:19 - 2020-12-24 20:12 - 000000000 ____D C:\Program Files\Google
2022-09-08 03:18 - 2020-12-24 20:13 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-08 03:18 - 2020-12-24 20:13 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-08 02:47 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}
2022-09-07 12:04 - 2021-10-20 05:39 - 000004276 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1634701178
2022-09-07 12:04 - 2021-10-20 05:39 - 000004044 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1634701159
2022-09-07 12:04 - 2021-06-04 10:01 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-09-07 12:04 - 2021-03-20 16:36 - 000003162 _____ C:\Windows\system32\Tasks\klcp_update
2022-09-07 12:04 - 2020-12-28 07:02 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-09-07 12:04 - 2020-12-27 07:22 - 000003528 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-07 12:04 - 2020-12-27 07:22 - 000003400 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-07 12:04 - 2020-12-24 20:12 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-07 12:04 - 2020-12-24 20:12 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-07 07:54 - 2022-08-01 18:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2022-09-06 16:52 - 2021-01-03 21:44 - 000021258 _____ C:\Users\Petr\Documents\Bez názvu 1.ods
2022-09-04 18:31 - 2020-12-27 07:23 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 18:31 - 2020-12-27 07:23 - 000002126 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-28 08:20 - 2020-12-28 07:01 - 000273320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000699856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000569032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000406816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000331200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000232384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000213952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000198696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000098816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000097216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000077976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000045376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000039664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2022-08-28 08:08 - 2020-12-28 06:59 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-11 06:58 - 2021-06-04 10:00 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories ========

2021-04-27 14:48 - 2021-04-27 14:48 - 000000017 _____ () C:\Users\Petr\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2022-09-04 03:05
==================== End of FRST.txt ========================

==================== Memory info ===========================

BIOS: Dell Inc. 2.3.1 05/21/2007
Motherboard: Dell Inc. 0GX297
Processor: Intel(R) Pentium(R) D CPU 3.00GHz
Percentage of memory in use: 82%
Total physical RAM: 3061.61 MB
Available physical RAM: 540.76 MB
Total Virtual: 6121.6 MB
Available Virtual: 2439.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.41 GB) (Free:32.83 GB) (Model: WDC WD800JD-75MSA3 ATA Device) NTFS
Drive d: (CNR-WCAM43) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS

\\?\Volume{3904ac92-4611-11eb-8877-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 74.5 GB) (Disk ID: 8393FFED)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 08 zář 2022 09:09

Zdravím!
Log Addition není kompletní.

Petako1 · #3 Příspěvek od **Petako1** » 08 zář 2022 16:56

Projel jsem to znovu se stejným výsledkem???

==================== Memory info ===========================

BIOS: Dell Inc. 2.3.1 05/21/2007
Motherboard: Dell Inc. 0GX297
Processor: Intel(R) Pentium(R) D CPU 3.00GHz
Percentage of memory in use: 82%
Total physical RAM: 3061.61 MB
Available physical RAM: 540.76 MB
Total Virtual: 6121.6 MB
Available Virtual: 2439.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.41 GB) (Free:32.83 GB) (Model: WDC WD800JD-75MSA3 ATA Device) NTFS
Drive d: (CNR-WCAM43) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS

\\?\Volume{3904ac92-4611-11eb-8877-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 74.5 GB) (Disk ID: 8393FFED)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#4 Příspěvek od **Rudy** » 08 zář 2022 18:01

To je divné. Log Addition má vypadat asi takto: https://forum.viry.cz/viewtopic.php?p=1547835#p1547835 . Zkusíme to tedy jen s FRST, ale nebu to úplné. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {6fc410e2-a914-11ec-92f0-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {b2fefaa9-51ce-11ec-983d-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {29A9613C-9DD2-4469-A04C-96D881320A52} - System32\Tasks\Opera scheduled Autoupdate 1634701159 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {A767D1E3-E916-4689-8851-CD8AAE569142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}
C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}
C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp?
End

Uložte do stejné složky, kde máte FRST jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Petako1 · #5 Příspěvek od **Petako1** » 09 zář 2022 02:26

Zdravím, má se normálně po skončení fix počítač restartovat? Po restartu jaký log mám zkopírovat? Jsou tam pořád stejně logy, tak jsem to znovu projel programem scan a zde jsou oba logy

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(explorer.exe ->) () [File not signed] C:\Windows\FixCamera.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe <6>
(explorer.exe ->) (SONIX TECHNOLOGY CO. , LTD -> ) C:\Windows\vsnp325.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(taskeng.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [189664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [FixCamera] => C:\Windows\FixCamera.exe [20480 2007-07-11] () [File not signed]
HKLM\...\Run: [tsnp325] => C:\Windows\tsnp325.exe [270336 2007-04-21] () [File not signed]
HKLM\...\Run: [snp325] => C:\Windows\vsnp325.exe [835584 2007-05-10] (SONIX TECHNOLOGY CO. , LTD -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {6fc410e2-a914-11ec-92f0-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {b2fefaa9-51ce-11ec-983d-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {29A9613C-9DD2-4469-A04C-96D881320A52} - System32\Tasks\Opera scheduled Autoupdate 1634701159 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {3C4280FE-39F6-48EA-A329-B023DC04A600} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {48F610F0-F930-4165-8161-C8D6E9D88FB0} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4384480 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
Task: {53A8223A-4036-4B84-B3F2-A98ECF7003DF} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2020-12-28] () [File not signed]
Task: {6F254356-D8B6-4A0A-AD22-0392A0EBA952} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3072421295-1568666953-773495262-1001 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {776C5DC6-7003-4A17-939E-6E24296E0C1F} - System32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {7D517BF8-6C36-41AA-A97D-3D44B0413D94} - System32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {7E63C982-D82F-4D77-80BD-8B6A678F9C1F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1947984 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {845F4629-1CA4-46F8-BB40-5D93E60B5229} - System32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED} => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
Task: {A767D1E3-E916-4689-8851-CD8AAE569142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {E67969DF-49B1-414D-8821-8D2C25FC6997} - System32\Tasks\Opera scheduled assistant Autoupdate 1634701178 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Petr\AppData\Local\Programs\Opera\assistant" $(Arg0)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 %SystemRoot%\system32\NLAapi.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 03 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 05 %SystemRoot%\System32\mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 %SystemRoot%\System32\winrnr.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-07]
Edge Notifications: Default -> hxxps://moderation-v2.messagecontrol.net

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-13]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-09-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-21]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-13]

Opera:
=======
OPR Profile: C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable [2021-10-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7709720 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2016-03-21] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [39664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [198696 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [331200 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [213952 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97216 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [45376 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [232384 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [406816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-12-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [98816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [77976 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [699856 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [569032 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167432 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [273320 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
S3 iaStorA; C:\Windows\system32\drivers\iaStorA.sys [1992192 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28128 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\drivers\iusb3hcs.sys [19184 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3hub; C:\Windows\system32\drivers\iusb3hub.sys [396528 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3xhc; C:\Windows\system32\drivers\iusb3xhc.sys [817392 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 netvsc; C:\Windows\System32\DRIVERS\netvsc60.sys [126464 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 SNP325; C:\Windows\System32\DRIVERS\snp325.sys [10406016 2007-11-22] (SONIX TECHNOLOGY CO. , LTD -> Sonix Co. Ltd.)
S3 SynthVid; C:\Windows\System32\DRIVERS\VMBusVideoM.sys [19456 2010-11-20] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-08 03:22 - 2022-09-08 03:24 - 000013224 _____ C:\Users\Petr\Desktop\FRST.txt
2022-09-08 03:21 - 2022-09-08 03:23 - 000000000 ____D C:\FRST
2022-09-08 03:14 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Desktop\FRST.exe
2022-09-08 03:10 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Downloads\FRST.exe
2022-09-06 16:50 - 2022-09-06 16:52 - 000000102 ____H C:\Users\Petr\Documents\.~lock.Bez názvu 1.ods#
2022-09-05 14:02 - 2022-09-05 14:02 - 000365774 _____ C:\Users\Petr\Downloads\123981614.pdf
2022-09-05 13:53 - 2022-09-05 13:54 - 000183205 _____ C:\Users\Petr\Downloads\priloha_1078968799_0_MHMPXPJI7USA.PDF
2022-09-05 04:37 - 2022-09-06 16:50 - 000000102 ____H C:\Users\Petr\Downloads\.~lock.Sešit1_sady_082022 (1).xlsx#
2022-09-03 06:00 - 2022-09-03 06:00 - 000034206 _____ C:\Users\Petr\Downloads\win-tv.m3u
2022-08-28 08:20 - 2022-08-28 08:19 - 000238816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2022-08-28 08:20 - 2022-08-28 08:19 - 000167432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2022-08-25 16:21 - 2022-08-25 16:21 - 000345306 _____ C:\Users\Petr\Downloads\priloha_1075753934_1_usnesení_schválení_odd.pdf
2022-08-25 16:21 - 2022-08-25 16:21 - 000014764 _____ C:\Users\Petr\Downloads\priloha_1075753934_0_Textová zpráva.PDF
2022-08-25 15:41 - 2022-08-25 15:41 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček (1).pdf
2022-08-25 15:41 - 2022-08-25 15:41 - 000139145 _____ C:\Users\Petr\Downloads\Aktivační balíček (2).pdf
2022-08-25 15:36 - 2022-08-25 15:36 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček.pdf
2022-08-25 15:31 - 2022-08-25 15:31 - 000068043 _____ C:\Users\Petr\Downloads\priloha_1075725767_0_dopis_1.pdf
2022-08-19 06:44 - 2022-09-06 16:50 - 000007368 _____ C:\Users\Petr\Downloads\Sešit1_sady_082022 (1).xlsx
2022-08-16 03:45 - 2022-08-16 03:45 - 000247965 _____ C:\Users\Petr\Downloads\priloha_1071826434_0_CTU0X08VJ6T3 - Výzva k zaplacení správního....pdf
2022-08-14 09:46 - 2022-08-14 09:46 - 000058438 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540715.webp
2022-08-14 09:45 - 2022-08-14 09:46 - 000059718 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540706.webp
2022-08-11 17:24 - 2022-08-11 17:24 - 000001264 _____ C:\Users\Public\Desktop\Skype.lnk
2022-08-11 17:23 - 2022-08-20 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-11 17:19 - 2022-08-11 17:20 - 088567136 _____ (Skype Technologies S.A.) C:\Users\Petr\Downloads\Skype-8.86.0.409.exe
2022-08-11 10:20 - 2022-08-11 10:20 - 000149379 _____ C:\Users\Petr\Downloads\namitkaprotivyrizenireklamace-prijemce.pdf
2022-08-11 02:11 - 2022-09-01 22:08 - 000007256 _____ C:\Users\Petr\Downloads\Sešit1_sady_08092022.xlsx
2022-08-11 01:57 - 2022-08-11 01:57 - 000515297 _____ C:\Users\Petr\Downloads\2923048213.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-08 03:21 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-09-08 03:21 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-09-08 03:19 - 2020-12-24 20:12 - 000000000 ____D C:\Program Files\Google
2022-09-08 03:18 - 2020-12-24 20:13 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-08 03:18 - 2020-12-24 20:13 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-08 02:47 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}
2022-09-07 12:04 - 2022-08-01 18:28 - 000002970 _____ C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}
2022-09-07 12:04 - 2021-10-20 05:39 - 000004276 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1634701178
2022-09-07 12:04 - 2021-10-20 05:39 - 000004044 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1634701159
2022-09-07 12:04 - 2021-06-04 10:01 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-09-07 12:04 - 2021-03-20 16:36 - 000003162 _____ C:\Windows\system32\Tasks\klcp_update
2022-09-07 12:04 - 2020-12-28 07:02 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-09-07 12:04 - 2020-12-27 07:22 - 000003528 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-07 12:04 - 2020-12-27 07:22 - 000003400 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-07 12:04 - 2020-12-24 20:12 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-07 12:04 - 2020-12-24 20:12 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-07 07:54 - 2022-08-01 18:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2022-09-06 16:52 - 2021-01-03 21:44 - 000021258 _____ C:\Users\Petr\Documents\Bez názvu 1.ods
2022-09-04 18:31 - 2020-12-27 07:23 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 18:31 - 2020-12-27 07:23 - 000002126 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-28 08:20 - 2020-12-28 07:01 - 000273320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000699856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000569032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000406816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000331200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000232384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000213952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000198696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000098816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000097216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000077976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000045376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000039664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2022-08-28 08:08 - 2020-12-28 06:59 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-11 06:58 - 2021-06-04 10:00 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories ========

2021-04-27 14:48 - 2021-04-27 14:48 - 000000017 _____ () C:\Users\Petr\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2022-09-04 03:05
==================== End of FRST.txt ========================
==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [189664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [FixCamera] => C:\Windows\FixCamera.exe [20480 2007-07-11] () [File not signed]
HKLM\...\Run: [tsnp325] => C:\Windows\tsnp325.exe [270336 2007-04-21] () [File not signed]
HKLM\...\Run: [snp325] => C:\Windows\vsnp325.exe [835584 2007-05-10] (SONIX TECHNOLOGY CO. , LTD -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3C4280FE-39F6-48EA-A329-B023DC04A600} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {48F610F0-F930-4165-8161-C8D6E9D88FB0} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4384480 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
Task: {53A8223A-4036-4B84-B3F2-A98ECF7003DF} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2020-12-28] () [File not signed]
Task: {6F254356-D8B6-4A0A-AD22-0392A0EBA952} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3072421295-1568666953-773495262-1001 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {776C5DC6-7003-4A17-939E-6E24296E0C1F} - \{6A764259-41FB-40C7-940C-DED6023BD8D4} -> No File <==== ATTENTION
Task: {7D517BF8-6C36-41AA-A97D-3D44B0413D94} - \{91B4354A-899C-44A2-86C6-C464F0813FF1} -> No File <==== ATTENTION
Task: {7E63C982-D82F-4D77-80BD-8B6A678F9C1F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1947984 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {845F4629-1CA4-46F8-BB40-5D93E60B5229} - \{CCB29FC1-4148-4BE9-A791-820C6018E0ED} -> No File <==== ATTENTION
Task: {E67969DF-49B1-414D-8821-8D2C25FC6997} - System32\Tasks\Opera scheduled assistant Autoupdate 1634701178 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Petr\AppData\Local\Programs\Opera\assistant" $(Arg0)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 %SystemRoot%\system32\NLAapi.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 03 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 %SystemRoot%\system32\pnrpnsp.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 05 %SystemRoot%\System32\mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 %SystemRoot%\System32\winrnr.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{A709F5E9-B263-4865-8A60-6B73B19BE3E4}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-09]
Edge Notifications: Default -> hxxps://moderation-v2.messagecontrol.net

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-13]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-09-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-21]
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-13]

Opera:
=======
OPR Profile: C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable [2021-10-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7709720 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [532704 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2016-03-21] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [39664 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [198696 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [331200 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [213952 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97216 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [45376 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [232384 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [406816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-12-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [98816 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [77976 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [699856 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [569032 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167432 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [273320 2022-08-28] (Avast Software s.r.o. -> AVAST Software)
S3 iaStorA; C:\Windows\system32\drivers\iaStorA.sys [1992192 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28128 2015-11-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\drivers\iusb3hcs.sys [19184 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3hub; C:\Windows\system32\drivers\iusb3hub.sys [396528 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iusb3xhc; C:\Windows\system32\drivers\iusb3xhc.sys [817392 2015-09-25] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 netvsc; C:\Windows\System32\DRIVERS\netvsc60.sys [126464 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 SNP325; C:\Windows\System32\DRIVERS\snp325.sys [10406016 2007-11-22] (SONIX TECHNOLOGY CO. , LTD -> Sonix Co. Ltd.)
S3 SynthVid; C:\Windows\System32\DRIVERS\VMBusVideoM.sys [19456 2010-11-20] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-09 02:50 - 2022-09-09 02:50 - 000001344 _____ C:\Users\Petr\Desktop\fixlist.txt
2022-09-08 03:33 - 2022-09-08 03:33 - 000001046 _____ C:\Users\Petr\Desktop\Addition.txt
2022-09-08 03:22 - 2022-09-09 03:35 - 000031043 _____ C:\Users\Petr\Desktop\FRST.txt
2022-09-08 03:21 - 2022-09-09 03:34 - 000000000 ____D C:\FRST
2022-09-08 03:14 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Desktop\FRST.exe
2022-09-08 03:10 - 2022-09-08 03:13 - 002074112 _____ (Farbar) C:\Users\Petr\Downloads\FRST.exe
2022-09-06 16:50 - 2022-09-08 22:12 - 000000102 ____H C:\Users\Petr\Documents\.~lock.Bez názvu 1.ods#
2022-09-05 14:02 - 2022-09-05 14:02 - 000365774 _____ C:\Users\Petr\Downloads\123981614.pdf
2022-09-05 13:53 - 2022-09-05 13:54 - 000183205 _____ C:\Users\Petr\Downloads\priloha_1078968799_0_MHMPXPJI7USA.PDF
2022-09-05 04:37 - 2022-09-06 16:50 - 000000102 ____H C:\Users\Petr\Downloads\.~lock.Sešit1_sady_082022 (1).xlsx#
2022-09-03 06:00 - 2022-09-03 06:00 - 000034206 _____ C:\Users\Petr\Downloads\win-tv.m3u
2022-08-28 08:20 - 2022-08-28 08:19 - 000238816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2022-08-28 08:20 - 2022-08-28 08:19 - 000167432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2022-08-25 16:21 - 2022-08-25 16:21 - 000345306 _____ C:\Users\Petr\Downloads\priloha_1075753934_1_usnesení_schválení_odd.pdf
2022-08-25 16:21 - 2022-08-25 16:21 - 000014764 _____ C:\Users\Petr\Downloads\priloha_1075753934_0_Textová zpráva.PDF
2022-08-25 15:41 - 2022-08-25 15:41 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček (1).pdf
2022-08-25 15:41 - 2022-08-25 15:41 - 000139145 _____ C:\Users\Petr\Downloads\Aktivační balíček (2).pdf
2022-08-25 15:36 - 2022-08-25 15:36 - 000139168 _____ C:\Users\Petr\Downloads\Aktivační balíček.pdf
2022-08-25 15:31 - 2022-08-25 15:31 - 000068043 _____ C:\Users\Petr\Downloads\priloha_1075725767_0_dopis_1.pdf
2022-08-19 06:44 - 2022-09-06 16:50 - 000007368 _____ C:\Users\Petr\Downloads\Sešit1_sady_082022 (1).xlsx
2022-08-16 03:45 - 2022-08-16 03:45 - 000247965 _____ C:\Users\Petr\Downloads\priloha_1071826434_0_CTU0X08VJ6T3 - Výzva k zaplacení správního....pdf
2022-08-14 09:46 - 2022-08-14 09:46 - 000058438 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540715.webp
2022-08-14 09:45 - 2022-08-14 09:46 - 000059718 _____ C:\Users\Petr\Downloads\strojek-na-paty-novy-129540706.webp
2022-08-11 17:24 - 2022-08-11 17:24 - 000001264 _____ C:\Users\Public\Desktop\Skype.lnk
2022-08-11 17:23 - 2022-08-20 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-11 17:19 - 2022-08-11 17:20 - 088567136 _____ (Skype Technologies S.A.) C:\Users\Petr\Downloads\Skype-8.86.0.409.exe
2022-08-11 10:20 - 2022-08-11 10:20 - 000149379 _____ C:\Users\Petr\Downloads\namitkaprotivyrizenireklamace-prijemce.pdf
2022-08-11 02:11 - 2022-09-01 22:08 - 000007256 _____ C:\Users\Petr\Downloads\Sešit1_sady_08092022.xlsx
2022-08-11 01:57 - 2022-08-11 01:57 - 000515297 _____ C:\Users\Petr\Downloads\2923048213.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-09 03:34 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-09-09 03:34 - 2009-07-14 06:34 - 000038624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-09-09 03:32 - 2020-12-24 20:12 - 000000000 ____D C:\Program Files\Google
2022-09-09 03:25 - 2020-12-28 06:59 - 000000000 ____D C:\ProgramData\Avast Software
2022-09-09 03:24 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-08 22:12 - 2021-01-03 21:44 - 000020452 _____ C:\Users\Petr\Documents\Bez názvu 1.ods
2022-09-08 03:18 - 2020-12-24 20:13 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-08 03:18 - 2020-12-24 20:13 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-07 12:04 - 2021-10-20 05:39 - 000004276 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1634701178
2022-09-07 12:04 - 2021-06-04 10:01 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-09-07 12:04 - 2021-03-20 16:36 - 000003162 _____ C:\Windows\system32\Tasks\klcp_update
2022-09-07 12:04 - 2020-12-28 07:02 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-09-07 12:04 - 2020-12-27 07:22 - 000003528 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-07 12:04 - 2020-12-27 07:22 - 000003400 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-07 07:54 - 2022-08-01 18:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2022-09-04 18:31 - 2020-12-27 07:23 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 18:31 - 2020-12-27 07:23 - 000002126 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-28 08:20 - 2020-12-28 07:01 - 000273320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000699856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000569032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000406816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000331200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000232384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000213952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000198696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000098816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000097216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000077976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000045376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2022-08-28 08:19 - 2020-12-28 07:01 - 000039664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2022-08-11 06:58 - 2021-06-04 10:00 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories ========

2021-04-27 14:48 - 2021-04-27 14:48 - 000000017 _____ () C:\Users\Petr\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2022-09-04 03:05
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 30-15-2022
Ran by Petr (09-09-2022 03:36:02)
Running from C:\Users\Petr\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) (2020-12-24 18:05:44)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3072421295-1568666953-773495262-500 - Administrator - Disabled)
Guest (S-1-5-21-3072421295-1568666953-773495262-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3072421295-1568666953-773495262-1002 - Limited - Enabled)
Petr (S-1-5-21-3072421295-1568666953-773495262-1001 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

325 USB PC Camera (HKLM\...\{F9466082-90E9-4BE4-92F0-CF0AF195B0CF}) (Version: 0.6.0.001 - Sonix)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 22.002.20191 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Any Video Converter 7.1.0 (HKLM\...\Any Video Converter) (Version: 7.1.0 - Anvsoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.8.6030 - Avast Software)
Avast Update Helper (HKLM\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
Balíček ovladače systému Windows - Microsoft Modem (07/01/2001 5.1.2535.0) (HKLM\...\B5D12F78F784C79744947AE1538727D18EC63BDB) (Version: 07/01/2001 5.1.2535.0 - Microsoft)
Core FTP LE (HKLM\...\CoreFTP) (Version: - )
Free Instagram Download (HKLM\...\Free Instagram Download_is1) (Version: 5.0.9.806 - FreeGrabApp LLC)
Google Chrome (HKLM\...\Google Chrome) (Version: 105.0.5195.102 - Google LLC)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
K-Lite Codec Pack 15.9.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 15.9.5 - KLCP)
LibreOffice 7.0.4.2 (HKLM\...\{DF421C7E-2134-4ED5-BB44-EB6D9F6F5A4A}) (Version: 7.0.4.2 - The Document Foundation)
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{88319A15-54BD-32FD-9BBB-462D868B49B0}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{B29F8740-372B-312F-8EEE-18FF857CCBB8}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 105.0.1343.27 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Prostředí Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
Skype verze 8.87 (HKLM\...\Skype_is1) (Version: 8.87 - Skype Technologies S.A.)
Subway Simulator Prague Metro (HKLM\...\Subway Simulator Prague Metro) (Version: 2.0.2 - Wapp)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.51 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Vzum (HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.42 - Vzum)
WinRAR 6.00 (32-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\ZoomUMX) (Version: 5.11.1 (6602) - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge (2).lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Petr L. - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\MSVCP140.dll
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\ucrtbase.DLL
2021-11-07 09:08 - 2021-11-07 09:08 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2022-09-09 02:30 - 2022-09-09 02:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\22090822\avast.local_vc142.crt\VCRUNTIME140.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-3072421295-1568666953-773495262-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2009-06-10 23:39 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3072421295-1568666953-773495262-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.8.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D470D479-ACDF-49AB-AAB9-47680E0D60FD}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{18A64B52-788B-4A87-9684-56237880AA0E}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{BA5DFB41-E889-4020-BA8F-47AB21E70648}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9250F293-FCD1-4965-AF0E-BC8E3FAB9D14}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{83A6B2AD-A83D-4566-A4FC-49CCB1121A21}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{A60BFAEE-1E77-4530-BE79-C4834CFF536A}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{0D3FF3EC-1092-4073-AB39-A16F3C6E9059}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B1012E62-9BCC-4071-82E8-ED027E2B2C23}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B73617F7-A930-4D34-B290-9E1389BB934B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{61492543-49F2-481F-BF21-D43C0C5D80EF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1A8AD196-6084-4CCE-9F3E-E781EB9B1F22}] => (Allow) C:\Users\Petr\AppData\Local\Programs\Opera\80.0.4170.40\opera.exe => No File
FirewallRules: [{1CBB3EF9-7F41-49AA-8F14-51791986FD87}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9355AA75-6759-45D8-8092-E06A59622517}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FF7F6020-FC71-40EF-A291-3951A5A64FD6}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AF7F9E16-1223-4B04-A05B-D2EC60856C98}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A791FC2B-70FE-4601-9BEF-FFD73644CEC8}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5BCBDFF6-35F7-41C7-879C-31C0D5CE14C8}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C805C398-68BF-4658-B10C-C0A137706761}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D47B0C64-DCC8-44F6-8E2F-CFBE18FA9A98}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{398B76EB-AB1B-4F12-BF42-FE9A4E545BB2}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E1D7AFDC-EF93-4400-A305-91E6689933C3}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{61864669-2A09-425A-BE1D-1833E5D7B162}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E73C7412-7110-44C4-8F9E-9EAB6D4F4EA9}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9EA86583-0013-4E6A-BBFA-290A0BB1D71F}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BA48914B-D204-4189-9FDE-A00AAABF6CC1}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1740BF7D-3857-4739-9E94-8DE71B3C24DF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{11281665-09FA-4665-954C-95C7737E7E17}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1819894C-6FCE-4F4F-B71E-0B67F7424F2F}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{68795DDA-BD48-401B-9059-D854C61BC781}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AF1CA24A-6517-4E39-AD15-5F3CA96E8DAC}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4519C261-1E2F-4184-A741-EE5D74417A1E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BCC0F97B-3911-413D-BA81-19ACE59FE3FB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{694BC424-00B7-4542-9F13-E337AF4C5FC6}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2AFEC8B4-B598-428A-B4B2-7DEB36F6A692}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04E9F2D6-962B-44A7-956B-4680067306B6}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{731B9162-0429-41D5-9D40-CA318AA4EAAB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BFB3B319-5BEE-452C-BBEA-B21C7A63D202}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{93D5EF5D-2F74-47B8-9EA5-9D5C081B5FAD}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

07-09-2022 03:00:54 Windows Update
08-09-2022 03:00:23 Windows Update
09-09-2022 03:00:54 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (09/09/2022 03:25:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/08/2022 05:59:43 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80004005).

Error: (09/08/2022 02:50:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/07/2022 11:05:10 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80004005).

Error: (09/07/2022 07:50:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/06/2022 05:16:39 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80004005).

Error: (09/06/2022 04:07:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/05/2022 09:24:37 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80004005).

System errors:
=============
Error: (09/09/2022 03:39:42 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/09/2022 03:21:41 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Instalační služba modulů systému Windows, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (09/09/2022 03:19:42 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/09/2022 03:19:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba modulů systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/09/2022 03:19:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/09/2022 03:19:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/09/2022 03:19:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/09/2022 03:14:01 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800b0100): Aktualizace zabezpečení pro rozhraní Microsoft .NET Framework 3.5.1 v systému Windows 7 SP1 x86 (KB2943357).

==================== Memory info ===========================

BIOS: Dell Inc. 2.3.1 05/21/2007
Motherboard: Dell Inc. 0GX297
Processor: Intel(R) Pentium(R) D CPU 3.00GHz
Percentage of memory in use: 59%
Total physical RAM: 3061.61 MB
Available physical RAM: 1248.29 MB
Total Virtual: 6121.6 MB
Available Virtual: 4335.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.41 GB) (Free:33.6 GB) (Model: WDC WD800JD-75MSA3 ATA Device) NTFS
Drive d: (CNR-WCAM43) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS

\\?\Volume{3904ac92-4611-11eb-8877-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 74.5 GB) (Disk ID: 8393FFED)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#6 Příspěvek od **Rudy** » 09 zář 2022 09:15

Nový fixlist:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {6fc410e2-a914-11ec-92f0-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {b2fefaa9-51ce-11ec-983d-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {29A9613C-9DD2-4469-A04C-96D881320A52} - System32\Tasks\Opera scheduled Autoupdate 1634701159 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {A767D1E3-E916-4689-8851-CD8AAE569142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}
C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}
C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
FirewallRules: [{1A8AD196-6084-4CCE-9F3E-E781EB9B1F22}] => (Allow) C:\Users\Petr\AppData\Local\Programs\Opera\80.0.4170.40\opera.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví fixlog, který sem zkopírujte.

Petako1 · #7 Příspěvek od **Petako1** » 10 zář 2022 04:27

fixlog

Fix result of Farbar Recovery Scan Tool (x86) Version: 30-15-2022
Ran by Petr (10-09-2022 05:17:37) Run:2
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {6fc410e2-a914-11ec-92f0-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\...\MountPoints2: {b2fefaa9-51ce-11ec-983d-001aa04a7d69} - F:\HiSuiteDownLoader.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {29A9613C-9DD2-4469-A04C-96D881320A52} - System32\Tasks\Opera scheduled Autoupdate 1634701159 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
Task: {A767D1E3-E916-4689-8851-CD8AAE569142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155592 2020-12-24] (Google LLC -> Google LLC)
C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}
C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}
C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
FirewallRules: [{1A8AD196-6084-4CCE-9F3E-E781EB9B1F22}] => (Allow) C:\Users\Petr\AppData\Local\Programs\Opera\80.0.4170.40\opera.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6fc410e2-a914-11ec-92f0-001aa04a7d69} => not found
HKU\S-1-5-21-3072421295-1568666953-773495262-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2fefaa9-51ce-11ec-983d-001aa04a7d69} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29A9613C-9DD2-4469-A04C-96D881320A52} => not found
"C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1634701159" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1634701159 => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FC5BC46-E1E6-4AD6-A6A4-0FD9B12A5426} => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A767D1E3-E916-4689-8851-CD8AAE569142} => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => not found
"C:\Windows\system32\Tasks\{CCB29FC1-4148-4BE9-A791-820C6018E0ED}" => not found
"C:\Windows\system32\Tasks\{91B4354A-899C-44A2-86C6-C464F0813FF1}" => not found
"C:\Windows\system32\Tasks\{6A764259-41FB-40C7-940C-DED6023BD8D4}" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A8AD196-6084-4CCE-9F3E-E781EB9B1F22}" => removed successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21005215 B
Java, Discord, Steam htmlcache => 0 B
Windows/system/drivers => 184337283 B
Edge => 0 B
Chrome => 382604444 B
Firefox => 0 B
Opera => 3183880 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
LocalService => 16802 B
NetworkService => 21266 B
Petr => 905367674 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 05:20:07 ====

#8 Příspěvek od **Rudy** » 10 zář 2022 10:36

Smazáno, log by již měl být OK.

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu