Dobrý den, otec mi předal NTB, že prý je nějaký divný. Konkrétně nemůžu najít nikde žádné fotky a obrázky, jakoby všechno zmizelo. Dále se mu sama změnila plocha a některé ikony zmizely. Nefunguje ani tak jak má spodní lišta, nereaguje na levé tlačítko myši, ale na pravé ano. Chtěl bych požádat o kontrolu logu. Nejde spustit FRST, tak posílám log z RSIT. Předem moc děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by culik48 at 2023-06-24 16:07:05
Microsoft Windows 10 Home
System drive C: has 325 GB (75%) free of 434 GB
Total RAM: 3962 MB (24% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:07:56, on 24.06.2023
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.1566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files\trend micro\culik48.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [OneDrive] "C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --auto-launch-at-startup --profile-directory="Default"
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Služba Avast Browser Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: Služba Avast Browser Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: @oem12.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Avast Cleanup (CleanupPSvc) - AVAST Software - C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_4e0b25 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Avast Driver Updater (DriverUpdSvc) - AVAST Software - C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.127\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9152 bytes
======Listing Processes======
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
dashost.exe {c6bf0a1c-4813-4883-b0353d58898adb9e}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\BtwRSupportService.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
winlogon.exe
"dwm.exe"
"fontdrvhost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation -p -s wcncsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" /nogui
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=gpu-process --field-trial-handle=2424,18179274017831292570,2941775129314948962,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=2468 /prefetch:2
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" --type=gpu-process --field-trial-handle=2480,2270362670839766172,1713578812027620894,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=2528 /prefetch:2
"C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2480,2270362670839766172,1713578812027620894,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=3792 /prefetch:8
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2424,18179274017831292570,2941775129314948962,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=3744 /prefetch:8
AvastUI.exe /nogui
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="6D946612-9EB0-0069-A8EF-3D0630F25515" /binpath="C:\Program Files\Avast Software\Avast" /logpath="C:\ProgramData\Avast Software\Avast\log"
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4456 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=5412 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=5660,2754425325835323929,7830694887283434392,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=disable --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4584 /prefetch:8
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
taskhostw.exe
C:\Windows\System32\mousocoreworker.exe -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://ipm.avcdn.net/?data=CAAQFxgEIK4 ... obr=msedge
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=114.0.5735.134 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=114.0.1823.51 --initial-client-data=0x170,0x174,0x178,0x14c,0x1bc,0x7ffc44544210,0x7ffc44544220,0x7ffc44544230
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=2160 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:2
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=2344 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:3
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=2616 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --instant-process --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=11 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=160660009267 --mojo-platform-channel-handle=4804 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=160705663022 --mojo-platform-channel-handle=6456 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=cs --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=8684 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhostw.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\wbem\wmiprvse.exe
/silentConfig
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\MicrosoftEdge_X64_114.0.1823.58_114.0.1823.51.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\EDGEMITMP_2336A.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{42A1440D-5613-4927-B3E1-008F80DCC050}\MicrosoftEdge_X64_114.0.1823.58_114.0.1823.51.exe" --previous-version="114.0.1823.51" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\114.0.5735.134_chrome_installer.exe" --verbose-logging --do-not-launch-chrome --channel=stable --system-level
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\CHROME.PACKED.7Z" --verbose-logging --do-not-launch-chrome --channel=stable --system-level
"C:\Program Files (x86)\Google\Update\Install\{0C36AAC9-0F10-436E-8E4F-901D1759205B}\CR_86433.tmp\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\WINDOWS\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=114.0.5735.134 --initial-client-data=0x294,0x298,0x29c,0x270,0x2a0,0x7ff6fb459498,0x7ff6fb4594a8,0x7ff6fb4594b8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2905_none_7dd39c4c7cb9dfa0\TiWorker.exe -Embedding
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=3900 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=109 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161770971814 --mojo-platform-channel-handle=10044 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=110 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161771140177 --mojo-platform-channel-handle=5868 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --lang=cs --js-flags=--ms-user-locale=cs_CZ --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=114 --time-ticks-at-unix-epoch=-1687453598221545 --launch-time-ticks=161884219289 --mojo-platform-channel-handle=6408 --field-trial-handle=2168,i,6103898436706494235,7228800070761306506,262144 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x4e8
"C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho_64.dll [2023-06-15 589200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\BHO\ie_to_edge_bho.dll [2023-06-15 454544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"TuneupUI.exe"=C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2023-05-06 4499864]
"DriverUpdUI.exe"=C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [2023-05-06 4949912]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2023-05-12 220056]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-04-22 289792]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-04-22 289792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2019-12-07 30870320]
"OneDrive"=C:\Program Files\Microsoft OneDrive\OneDrive.exe [2023-06-22 2605944]
"AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2023-05-18 3311032]
"MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2023-06-15 4113824]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2023-06-24 16:07:07 ----D---- C:\Program Files\trend micro
2023-06-24 16:07:05 ----D---- C:\rsit
2023-06-24 15:54:03 ----HD---- C:\$WinREAgent
2023-06-22 20:33:14 ----A---- C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:33:11 ----A---- C:\WINDOWS\system32\drivers\asw3ccb6a65c1dd481f.tmp
2023-06-22 20:27:36 ----D---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:24:52 ----D---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24:28 ----SD---- C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft
======List of files/folders modified in the last 1 month======
2023-06-24 16:07:07 ----RD---- C:\Program Files
2023-06-24 16:02:16 ----D---- C:\WINDOWS\Temp
2023-06-24 15:58:49 ----D---- C:\WINDOWS\SystemTemp
2023-06-24 15:54:07 ----D---- C:\WINDOWS\Prefetch
2023-06-24 15:52:29 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 15:50:48 ----HD---- C:\Program Files\WindowsApps
2023-06-24 15:48:49 ----D---- C:\Program Files (x86)\Google
2023-06-24 15:43:11 ----D---- C:\WINDOWS\system32\sru
2023-06-24 15:42:16 ----D---- C:\WINDOWS\system32\SleepStudy
2023-06-22 21:00:34 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2023-06-22 20:39:59 ----D---- C:\Program Files\Microsoft OneDrive
2023-06-22 20:39:42 ----D---- C:\WINDOWS\system32\Tasks
2023-06-22 20:33:14 ----HD---- C:\WINDOWS\ELAMBKUP
2023-06-22 20:33:14 ----D---- C:\WINDOWS\System32
2023-06-22 20:33:12 ----D---- C:\WINDOWS\system32\drivers
2023-06-22 20:24:27 ----RD---- C:\Users
2023-06-22 20:04:28 ----D---- C:\WINDOWS\SysWOW64
2023-06-22 20:04:28 ----D---- C:\WINDOWS\system32\oobe
2023-06-22 20:04:20 ----D---- C:\WINDOWS\Tasks
2023-06-22 20:04:20 ----D---- C:\WINDOWS\system32\drivers\etc
2023-06-22 20:04:20 ----D---- C:\WINDOWS\INF
2023-06-22 20:04:17 ----D---- C:\Program Files\WinRAR
2023-06-22 19:58:19 ----D---- C:\WINDOWS\system32\wbem
2023-06-22 19:40:25 ----D---- C:\WINDOWS\registration
2023-06-22 19:39:56 ----SHD---- C:\System Volume Information
2023-06-22 19:39:11 ----D---- C:\ProgramData\AVAST Software
2023-06-22 19:38:19 ----D---- C:\Program Files\Avast Software
2023-06-22 19:35:01 ----D---- C:\WINDOWS\system32\config
2023-06-22 19:31:54 ----D---- C:\WINDOWS\AppReadiness
2023-06-22 19:25:15 ----RD---- C:\WINDOWS\Microsoft.NET
2023-06-22 19:22:42 ----D---- C:\WINDOWS\Minidump
2023-06-22 19:11:37 ----D---- C:\WINDOWS\Logs
2023-06-22 19:09:56 ----D---- C:\WINDOWS\system32\catroot2
2023-06-22 19:07:25 ----ASH---- C:\DumpStack.log.tmp
2023-06-22 19:07:24 ----D---- C:\Windows
2023-06-19 18:17:15 ----D---- C:\WINDOWS\system32\NDF
2023-05-30 09:16:25 ----D---- C:\WINDOWS\WinSxS
2023-05-30 08:21:38 ----D---- C:\WINDOWS\CbsTemp
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2023-06-22 31376]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2023-06-22 297832]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2023-06-22 95912]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2022-10-14 25576]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2023-06-22 80376]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2023-06-22 319560]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-02 647736]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2021-06-09 57168]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2022-08-17 44032]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2023-06-22 236448]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2023-06-22 392320]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2023-06-22 39600]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2023-06-22 271504]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2023-06-22 556064]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2023-06-22 105248]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2023-06-22 943456]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2023-06-22 703800]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2023-02-15 95232]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2023-05-12 212672]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2023-01-12 145760]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2023-02-15 493056]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2021-04-22 53248]
R3 ACPIVPC;@oem2.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-12-08 33560]
R3 bcbtums;@oem12.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2019-12-07 7585280]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2023-05-15 1565696]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2023-05-15 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 CnxtHdAudService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-08-05 1317096]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem18.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2019-12-07 121344]
R3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2021-04-22 322376]
R3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2022-09-16 142176]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2022-02-11 158520]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2022-02-11 694272]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2023-03-16 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2023-05-15 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2021-04-22 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2023-05-15 45568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2023-04-17 133632]
S3 btwampfl;@oem12.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2023-03-16 96112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2021-04-22 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2022-04-14 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2022-04-14 210944]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2023-05-15 131400]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2022-01-15 990536]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [2023-05-12 584600]
R2 avast! Tools;Avast Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2023-05-12 585112]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [2021-08-16 56912]
R2 BcmBtRSupport;@oem12.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CDPUserSvc_4e0b25;Uživatelská služba platformy připojených zařízení_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-23 224144]
R2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-10-23 154920]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 OneSyncSvc_4e0b25;Hostitel synchronizace_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [2023-05-12 8821656]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 cbdhsvc_4e0b25;Uživatelská služba schránky_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
R3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2022-10-14 987568]
S2 avast;Služba Avast Browser Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2022-12-21 191120]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S2 CleanupPSvc;Avast Cleanup; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [2023-05-06 17477528]
S2 DriverUpdSvc;Avast Driver Updater; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [2023-05-06 9007000]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 AarSvc_4e0b25;Agent Activation Runtime_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2022-12-21 191120]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2023-05-18 2032672]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BcastDVRUserService_4e0b25;Uživatelská služba pro GameDVR a vysílání her_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BluetoothUserService_4e0b25;Služba pro podporu uživatelů Bluetooth_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 CaptureService_4e0b25;CaptureService_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 ConsentUxUserSvc_4e0b25;ConsentUX_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-17 382696]
S3 CredentialEnrollmentManagerUserSvc_4e0b25;CredentialEnrollmentManagerUserSvc_4e0b25; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-17 382696]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DeviceAssociationBrokerSvc_4e0b25;DeviceAssociationBroker_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicePickerUserSvc_4e0b25;DevicePicker_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevicesFlowUserSvc_4e0b25;Tok zařízení_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2022-01-15 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-23 224144]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 FileSyncHelper;FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.114.0530.0001_1\FileSyncHelper.exe [2023-06-22 3446648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.127\elevation_service.exe [2023-05-16 1741080]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-10-23 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MessagingService_4e0b25;Služba zasílání zpráv_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.51\elevation_service.exe [2023-06-15 1744272]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 OneDrive Updater Service;OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.114.0530.0001_1\OneDriveUpdaterService.exe [2023-06-22 3781496]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-04-22 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PimIndexMaintenanceSvc_4e0b25;Data kontaktů_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PrintWorkflowUserSvc_4e0b25;PrintWorkflow_4e0b25; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2022-07-15 55320]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-04-22 1265152]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-07-15 55320]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problémy s tatíkovým NTB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s tatíkovým NTB
Zdravím!
Log RSIT není vhodný pro souč. 64b systémy (není s nimi plně kompatibilní). Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Log RSIT není vhodný pro souč. 64b systémy (není s nimi plně kompatibilní). Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s tatíkovým NTB
Já bych rád, ale jak jsem psal, tak FRST mi nelze spustit. Zkouším normálně i jako správce, ale nereaguje.
Re: Problémy s tatíkovým NTB
Tak se to nakonec povedlo:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2023
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (24-06-2023 23:42:29)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\Avast\AvastUI.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <22>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113824 2023-06-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-24]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-24 23:42 - 2023-06-24 23:44 - 000018266 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-24 23:43 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 23:31 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-24 23:31 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-24 23:28 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2023
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (24-06-2023 23:42:29)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\Avast\AvastUI.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <22>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113824 2023-06-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-24]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-24 23:42 - 2023-06-24 23:44 - 000018266 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-24 23:43 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-24 23:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-24 23:31 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-24 23:31 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-24 23:28 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Problémy s tatíkovým NTB
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-06-2023
Ran by culik48 (24-06-2023 23:45:57)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.51 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E58DD35-F4A5-4785-A055-8159A886FB40}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.51\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
24-06-2023 18:58:23 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (06/24/2023 06:58:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Windows8_OS (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (06/24/2023 05:10:42 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (06/24/2023 05:08:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
System errors:
=============
Error: (06/24/2023 06:00:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (06/24/2023 06:00:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.
Error: (06/24/2023 06:00:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/24/2023 06:00:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/24/2023 05:45:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.
Error: (06/24/2023 05:45:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/24/2023 05:45:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/24/2023 05:40:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3PR-MICROSOFT.WINDOWSALARMS.
Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.
CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 78%
Total physical RAM: 3961.77 MB
Available physical RAM: 860.95 MB
Total Virtual: 5369.77 MB
Available Virtual: 1865.98 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.99 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS
\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by culik48 (24-06-2023 23:45:57)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.51 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E58DD35-F4A5-4785-A055-8159A886FB40}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.51\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
24-06-2023 18:58:23 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (06/24/2023 06:58:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Windows8_OS (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (06/24/2023 05:10:42 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (06/24/2023 05:08:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
System errors:
=============
Error: (06/24/2023 06:00:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (06/24/2023 06:00:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.
Error: (06/24/2023 06:00:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/24/2023 06:00:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/24/2023 05:45:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.
Error: (06/24/2023 05:45:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/24/2023 05:45:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/24/2023 05:40:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3PR-MICROSOFT.WINDOWSALARMS.
Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.
CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 78%
Total physical RAM: 3961.77 MB
Available physical RAM: 860.95 MB
Total Virtual: 5369.77 MB
Available Virtual: 1865.98 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.99 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS
\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s tatíkovým NTB
OK. RSIT by nám vážně byl k ničemu. Teď spusťte ADWCleaner:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s tatíkovým NTB
Čištění a opravy tam nejsou, pouze karanténa a bylo to bez restartu...
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2023
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.2965)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\Public\Documents\Downloaded Installers
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1922 octets] - [25/06/2023 10:25:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2023
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.2965)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\Public\Documents\Downloaded Installers
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1922 octets] - [25/06/2023 10:25:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s tatíkovým NTB
Poprosím o nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s tatíkovým NTB
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2023
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (25-06-2023 17:22:46)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Service Pack 2 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM-x32\...\Winlogon: [Userinit]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-25]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-25 17:22 - 2023-06-25 17:26 - 000016913 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST.txt
2023-06-25 10:24 - 2023-06-25 10:29 - 000000000 ____D C:\AdwCleaner
2023-06-25 10:21 - 2023-06-25 10:33 - 008791352 _____ (Malwarebytes) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\AdwCleaner.exe
2023-06-24 23:45 - 2023-06-24 23:48 - 000034289 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\Addition.txt
2023-06-24 23:42 - 2023-06-24 23:48 - 000032891 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-25 17:24 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-25 17:12 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-25 17:12 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-25 17:11 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-25 17:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-25 11:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-25 10:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
==================== End of FRST.txt ========================
Ran by culik48 (administrator) on IDEA-PCCULIK (LENOVO 20150) (25-06-2023 17:22:46)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
Loaded Profiles: culik48
Platform: Microsoft Windows 10 Home Service Pack 2 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM-x32\...\Winlogon: [Userinit]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\Run: [MicrosoftEdgeAutoLaunch_64F35537DB61554CD8B0660698215A4B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-919856772-2739524122-988455724-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2606456 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\Installer\chrmstp.exe [2023-05-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A0D5E50-EA2E-45DB-96ED-6092048972C9} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {0D67E7F6-6503-4B7D-B9E1-24F3164A5EBE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DBF850E-9E55-4E1A-A7DC-6A0C76BB49C9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2B5FFC47-713A-4595-987F-E9A226160DCF} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4885400 2023-06-22] (Avast Software s.r.o. -> AVAST Software)
Task: {2E7CB010-3F2B-4742-86BE-9DD92C3293DE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {2E82E370-A82A-436E-8E85-111DDB219A2A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {4D3228F2-1F15-4840-90D6-1080491FA557} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software) [File not signed]
Task: {61E52EE9-3124-42F8-B80F-1F5F466C8C34} - System32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {8545A5AC-230B-4732-AE7A-07702FC3E6C6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3311032 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9C8856B5-B0C0-4B82-9102-3C9A462F1B61} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {B08D84B0-62EE-45EF-B011-2DDDC8BAA5C9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E981A256-D33A-44FD-8410-DD48C5ED1064} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4150136 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA787385-D788-4070-88E1-9BD406495C18} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {EF0AB337-73FF-4607-8FF9-754FF2CD732F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{782ddeb1-fc8b-4b43-a2b8-ac6ce4fa8c4e}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-25]
Edge Extension: (Edge relevant text changes) - C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-21] (Avast Software s.r.o. -> AVAST Software)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8821656 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\113.0.21244.127\elevation_service.exe [2032672 2023-05-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-16] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncHelper.exe [3446648 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.119.0606.0001\OneDriveUpdaterService.exe [3781496 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-22] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-25 17:22 - 2023-06-25 17:26 - 000016913 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST.txt
2023-06-25 10:24 - 2023-06-25 10:29 - 000000000 ____D C:\AdwCleaner
2023-06-25 10:21 - 2023-06-25 10:33 - 008791352 _____ (Malwarebytes) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\AdwCleaner.exe
2023-06-24 23:45 - 2023-06-24 23:48 - 000034289 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\Addition.txt
2023-06-24 23:42 - 2023-06-24 23:48 - 000032891 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST.txt
2023-06-24 23:41 - 2023-06-25 17:24 - 000000000 ____D C:\FRST
2023-06-24 23:35 - 2023-06-24 23:35 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Downloads\FRST64.exe
2023-06-24 17:47 - 2023-06-24 17:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\D3DSCache
2023-06-24 17:07 - 2023-06-24 17:07 - 000000000 ___HD C:\$WinREAgent
2023-06-24 16:07 - 2023-06-24 16:08 - 000000000 ____D C:\rsit
2023-06-24 16:07 - 2023-06-24 16:07 - 000000000 ____D C:\Program Files\trend micro
2023-06-24 16:04 - 2023-06-24 16:04 - 001222144 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\RSITx64.exe
2023-06-24 15:59 - 2023-06-24 15:59 - 002383360 _____ (Farbar) C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\FRST64.exe
2023-06-24 15:46 - 2023-06-24 15:47 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Spelling
2023-06-22 20:33 - 2023-06-22 20:32 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-22 20:27 - 2023-06-22 20:29 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Avast Software
2023-06-22 20:27 - 2023-06-22 20:27 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\CEF
2023-06-22 20:25 - 2023-06-22 20:59 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\AVAST Software
2023-06-22 20:25 - 2023-06-22 20:25 - 000002546 _____ C:\Users\TEMP.IDEA-PCCULIK.003\Desktop\Avast Secure Browser.lnk
2023-06-22 20:25 - 2023-06-22 20:25 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Google
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows
2023-06-22 20:24 - 2023-06-22 20:26 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Packages
2023-06-22 20:24 - 2023-06-22 20:24 - 000000020 ___SH C:\Users\TEMP.IDEA-PCCULIK.003\ntuser.ini
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Šablony
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Soubory cookie
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Poslední
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní tiskárny
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Okolní síť
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Nabídka Start
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Dokumenty
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Obrázky
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Hudba
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Documents\Filmy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\Data aplikací
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Protect
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Credentials
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\3D Objects
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Adobe
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Local\ConnectedDevicesPlatform
2023-06-22 20:24 - 2023-06-22 20:24 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003
2023-06-22 20:24 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.003\AppData\Roaming\Microsoft\Network
2023-06-22 20:24 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.003\OneDrive
2023-06-22 19:07 - 2023-06-22 19:22 - 000833820 _____ C:\WINDOWS\Minidump\062223-43375-01.dmp
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Google
2023-06-22 18:07 - 2023-06-22 18:07 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\AVAST Software
2023-06-22 18:06 - 2023-06-22 20:03 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\3D Objects
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\SystemCertificates
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Adobe
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Packages
2023-06-22 18:06 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\ConnectedDevicesPlatform
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Protect
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ___SD C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Credentials
2023-06-22 18:05 - 2023-06-22 18:05 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Vault
2023-06-22 17:58 - 2023-06-22 20:03 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005
2023-06-22 17:58 - 2023-06-22 18:06 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Šablony
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Soubory cookie
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Poslední
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní tiskárny
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Okolní síť
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Nabídka Start
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Dokumenty
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Obrázky
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Hudba
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Documents\Filmy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\Data aplikací
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-06-22 17:58 - 2023-06-22 17:58 - 000000000 _SHDL C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Local\Data aplikací
2023-06-22 17:58 - 2021-04-22 14:33 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.005\AppData\Roaming\Microsoft\Network
2023-06-22 17:58 - 2019-10-21 10:39 - 000000000 ___RD C:\Users\TEMP.IDEA-PCCULIK.005\OneDrive
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Avast Software
2023-06-19 18:27 - 2023-06-19 18:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2023-06-19 18:23 - 2023-06-19 18:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2023-06-01 16:51 - 2023-06-19 18:22 - 000000000 ____D C:\Users\TEMP.IDEA-PCCULIK.004
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-25 17:12 - 2021-12-17 11:50 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-25 17:12 - 2019-10-23 14:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-25 17:11 - 2021-04-22 14:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-25 17:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-25 11:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-25 10:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-24 18:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-24 18:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-24 17:59 - 2023-04-13 15:05 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-24 17:59 - 2022-01-14 10:03 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-500
2023-06-24 17:59 - 2021-12-11 14:31 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-919856772-2739524122-988455724-1001
2023-06-24 17:59 - 2021-08-19 14:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-24 17:59 - 2021-04-22 14:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-24 16:48 - 2019-10-15 08:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-24 16:38 - 2019-10-15 08:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-24 16:31 - 2019-10-23 14:45 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-24 16:31 - 2019-10-23 14:45 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 16:11 - 2020-04-23 14:21 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-22 20:57 - 2021-07-16 13:51 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
2023-06-22 20:57 - 2021-04-22 14:46 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-22 20:52 - 2021-04-22 14:46 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-22 20:33 - 2021-08-16 12:21 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-22 20:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-22 20:32 - 2022-09-03 08:17 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-22 20:32 - 2021-08-16 12:20 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-22 20:24 - 2014-04-22 22:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\culik48
2023-06-22 20:05 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator
2023-06-22 20:04 - 2020-01-03 13:16 - 000000000 ____D C:\Program Files\WinRAR
2023-06-22 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-22 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-22 20:04 - 2018-09-19 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2023-06-22 20:04 - 2018-03-27 14:03 - 000000000 ___RD C:\Users\Administrator\3D Objects
2023-06-22 20:04 - 2017-09-25 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2023-06-22 20:04 - 2016-11-10 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-22 20:04 - 2016-03-01 14:42 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2023-06-22 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-06-22 19:39 - 2021-06-25 08:14 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-22 19:39 - 2021-04-22 14:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-06-22 19:38 - 2021-06-30 13:49 - 000000000 ____D C:\Program Files\Avast Software
2023-06-22 19:22 - 2021-10-03 09:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-22 19:17 - 2022-09-03 08:21 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-06-22 19:17 - 2022-09-03 08:21 - 000002087 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-06-22 19:07 - 2021-10-03 09:45 - 422435338 _____ C:\WINDOWS\MEMORY.DMP
2023-06-22 19:07 - 2021-04-22 14:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-22 19:07 - 2021-04-22 14:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-19 18:24 - 2020-06-10 13:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-06-19 18:23 - 2018-03-27 14:02 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-06-19 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-30 08:50 - 2021-08-29 13:38 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
==================== End of FRST.txt ========================
Re: Problémy s tatíkovým NTB
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-06-2023
Ran by culik48 (25-06-2023 17:32:08)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Microsoft Windows 10 Home Service Pack 2 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION
==================== Internet Explorer (Version 11) (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2885EC46-71ED-4CF1-9088-3638C6FA3CE7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
24-06-2023 18:58:23 Naplánovaný kontrolní bod
25-06-2023 10:28:28 AdwCleaner_BeforeCleaning_25/06/2023_10:28:26
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2023 05:13:52 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe na řádku 0.
Neplatná syntaxe XML.
Error: (06/25/2023 10:28:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/25/2023 10:28:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {20897094-2996-413b-a663-bb9de84fe60f}
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (06/25/2023 10:53:07 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.
Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/25/2023 10:53:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/25/2023 10:52:52 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/25/2023 10:52:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4NNS1-Microsoft.DesktopAppInstaller.
Error: (06/25/2023 10:52:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.
Error: (06/25/2023 10:51:33 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.
CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 3961.77 MB
Available physical RAM: 1038.7 MB
Total Virtual: 5369.77 MB
Available Virtual: 1857.52 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.73 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS
\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by culik48 (25-06-2023 17:32:08)
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Microsoft Windows 10 Home Service Pack 2 (X64) (2021-04-22 12:47:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
DefaultAccount (S-1-5-21-919856772-2739524122-988455724-503 - Limited - Disabled)
Guest (S-1-5-21-919856772-2739524122-988455724-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-919856772-2739524122-988455724-1009 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-919856772-2739524122-988455724-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.5.6066 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 113.0.21244.127 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.58 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-919856772-2739524122-988455724-1001_Classes\CLSID\{04271989-C4D2-FCF2-ED67-EBB732559379} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.119.0606.0001\FileSyncShell64.dll [2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION
==================== Internet Explorer (Version 11) (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-10-14 16:58 - 2019-10-14 16:54 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-919856772-2739524122-988455724-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-919856772-2739524122-988455724-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_7E5E8B24B023CD7DF4A40095E7483CF6"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{B9925A2A-27E4-432E-93EA-77542CA74C4B}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{9D77E5BE-2E58-43F4-AF50-5ED44779D48A}C:\program files\avast software\driver updater\driverupdui.exe] => (Allow) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4F47F44D-4DEC-4DF9-8748-0D2C643A1E14}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0496E170-C1B1-4A27-81A9-711B94EB0951}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F7994DAB-52CB-4410-8BED-5BDCC5BE4C82}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{A8219404-FDB7-4DD7-9973-0683FAB42E35}C:\program files\avast software\cleanup\tuneupui.exe] => (Block) C:\program files\avast software\cleanup\tuneupui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B97FACC8-6F33-4285-9620-3A16C36DB82A}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFFD7150-94B2-4F02-B99B-E80AEFC74BF0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E342B044-B99A-48EC-96B4-C98291E4AEAE}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1940005D-F49D-475C-A980-19FFAA2D5905}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{935FBE6B-15DE-4B79-9A3B-A23CF0293AF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{272D7F0C-11E3-4413-B68E-8A16BDBE65F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{59C1F8CA-79F4-4AE7-828C-3BE03CF3C44F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07C14680-7F54-45C2-AD17-F373DD3F9DB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDE65178-0EA9-4EAD-831B-540F113D46A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4CE93F2-14FC-4B3B-86F6-4FB480867292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9330C901-4E6D-44C3-BEB0-DED4F42CFD25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FE8C7ED-46AB-4B92-B559-CC7F7C2A56E9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.207.1277.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{000C4AA7-79CD-4617-A3F0-F0867F13CCEE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEFDECE-1ED9-4718-A2FC-28A602492E71}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{192E9C88-74D8-4CA2-97B6-3E33929BF60A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DE3878D-CC1B-4697-B28F-BA7BC9AA1208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F12B4B05-83BD-4408-A087-43F9DE1B042A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90B9ED35-36AB-4BE1-873C-84DE841BE9B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B8B389-DDA8-45DB-8C9F-07A4D3366140}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A54232D4-D2B0-4268-A267-F891DAB6D142}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{424B5396-05E2-4E06-837E-2F85AF5EA14A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65A9EDA7-64DC-4B29-8B15-2C44AF474C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2885EC46-71ED-4CF1-9088-3638C6FA3CE7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
24-06-2023 18:58:23 Naplánovaný kontrolní bod
25-06-2023 10:28:28 AdwCleaner_BeforeCleaning_25/06/2023_10:28:26
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2023 05:13:52 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe na řádku 0.
Neplatná syntaxe XML.
Error: (06/25/2023 10:28:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/25/2023 10:28:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {20897094-2996-413b-a663-bb9de84fe60f}
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.
System Error:
Parametr není správný.
.
Error: (06/24/2023 06:58:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-919856772-2739524122-988455724-1001.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.
Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {01e9ae8e-7354-4d3d-9108-5f3b6186d6e3}
Error: (06/24/2023 06:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na LENOVO (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (06/25/2023 10:53:07 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9P105T65H4Z5-Microsoft.WindowsAppRuntime.1.3.
Error: (06/25/2023 10:53:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/25/2023 10:53:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH3FRZM-Microsoft.VCLibs.140.00.
Error: (06/25/2023 10:52:52 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Error: (06/25/2023 10:52:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4NNS1-Microsoft.DesktopAppInstaller.
Error: (06/25/2023 10:52:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.
Error: (06/25/2023 10:51:33 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d23): 9NBLGGH4RV3K-Microsoft.VCLibs.140.00.UWPDesktop.
Windows Defender:
================
Date: 2021-08-10 13:50:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7526DC48-F42A-47F0-B19B-D6393EBAFF39}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 17:16:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8130EBB0-53C6-4F4A-9FF4-226C42671293}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 16:17:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B6E8102-811F-446F-8613-81481BA33B96}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-09 10:02:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {02D98677-B755-4FA4-9117-011A989AE632}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-08-07 12:40:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6C8DFDFC-BA7A-44C3-8CBE-E74A3BBE5DCA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1441.0
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:14:31
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.18400.4
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2023-05-16 09:10:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-05-16 09:01:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.345.609.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18400.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.
CodeIntegrity:
===============
Date: 2023-06-22 20:29:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5ECN96WW(V9.01) 03/14/2013
Motherboard: LENOVO INVALID
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 3961.77 MB
Available physical RAM: 1038.7 MB
Total Virtual: 5369.77 MB
Available Virtual: 1857.52 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.1 GB) (Free:323.73 GB) (Model: ST500LT012-9WS142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.61 GB) (Model: ST500LT012-9WS142) NTFS
\\?\Volume{de0ee9b6-492e-4635-8f58-cc2dbd332a70}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{9219670c-da0f-4d13-85ab-b4617d1d7b2a}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{5e84dc25-84f1-47a8-89ad-00f67dae5630}\ (PBR_DRV) (Fixed) (Total:13.89 GB) (Free:3.43 GB) NTFS
\\?\Volume{44e513d5-5145-4be9-8da0-1be645ff354f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 758CB9B7)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s tatíkovým NTB
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\TEMP.IDEA-PCCULIK.003\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s tatíkovým NTB
Chtěl jsem dokončit fix klikem na ok a počítač se restartoval, ale poté nebylo na ploše vubec nic co se tam uložilo. FRST i logy ze skenů a i log z fixu zmizeli. Tak jsem fix udělal znovu a nenechal PC zrestartovat. Tady je log z fixu...
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2023
Ran by culik48 (25-06-2023 20:53:03) Run:2
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Loaded Profiles: culik48 & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{417E1065-4F9D-4305-90B2-4F9BED9FF924}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20C640AA-00D1-40D5-A6F9-A0204FC33233}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B063090A-CAD8-4B17-B4BF-679FB670E7E7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03F19A16-DC0B-41D1-94FF-275D9B1624F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9567D624-4207-4568-A78B-C5573B3CE23B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{609F312E-BC92-4993-A4AD-DE8286C7112C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E00FD082-8A39-4B17-9B30-309BD903F9B2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB1A7E12-D105-493E-ABF2-0F14422A932D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BEBEAAEB-68BD-42D5-A95F-312317F85584}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1184E825-C309-4054-8DBD-7389BD9806AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{149CE819-A0F5-41B3-B788-CDE67250DC00}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6FEF3BB-2063-4C50-A538-4E33821CB37B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8A34D39-A31E-4F77-850A-B5CCD07C2253}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F3719876-ADD4-411E-8D27-73547AD8EBA0}" => not found
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiSpyware => Error setting value.
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiVirus => Error setting value.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3958C4B-66E3-4A26-8145-7AB84307CB7E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42F1552B-3304-468B-8705-3B0A5B5AA244}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8425736 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 47 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
TEMP.IDEA-PCCULIK.003 => 221709 B
culik48 => 221709 B
Administrator => 221709 B
RecycleBin => 0 B
EmptyTemp: => 8.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:53:23 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2023
Ran by culik48 (25-06-2023 20:53:03) Run:2
Running from C:\Users\TEMP.IDEA-PCCULIK.003\Desktop
Loaded Profiles: culik48 & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{417E1065-4F9D-4305-90B2-4F9BED9FF924}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{20C640AA-00D1-40D5-A6F9-A0204FC33233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.95.3413.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B063090A-CAD8-4B17-B4BF-679FB670E7E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{03F19A16-DC0B-41D1-94FF-275D9B1624F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9567D624-4207-4568-A78B-C5573B3CE23B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{609F312E-BC92-4993-A4AD-DE8286C7112C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E00FD082-8A39-4B17-9B30-309BD903F9B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DB1A7E12-D105-493E-ABF2-0F14422A932D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3409.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BEBEAAEB-68BD-42D5-A95F-312317F85584}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1184E825-C309-4054-8DBD-7389BD9806AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{149CE819-A0F5-41B3-B788-CDE67250DC00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F6FEF3BB-2063-4C50-A538-4E33821CB37B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B8A34D39-A31E-4F77-850A-B5CCD07C2253}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F3719876-ADD4-411E-8D27-73547AD8EBA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A3958C4B-66E3-4A26-8145-7AB84307CB7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
Task: {42F1552B-3304-468B-8705-3B0A5B5AA244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-23] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{417E1065-4F9D-4305-90B2-4F9BED9FF924}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEE6A6BF-927E-42B5-8544-C3B5A7F9DCBD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20C640AA-00D1-40D5-A6F9-A0204FC33233}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A567A5E-3D98-4CAA-A04D-17BF0AF1870C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B063090A-CAD8-4B17-B4BF-679FB670E7E7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C9E29319-1399-47B7-BEBC-D5059E5EB4AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF38B357-60B8-4B83-ABBD-D7FB9DE1F009}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03F19A16-DC0B-41D1-94FF-275D9B1624F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9567D624-4207-4568-A78B-C5573B3CE23B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{609F312E-BC92-4993-A4AD-DE8286C7112C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E00FD082-8A39-4B17-9B30-309BD903F9B2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{06683CBD-A0F8-4D9E-B380-E9EEEBCD5D54}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8945953F-F8AE-4E1F-B1F5-DF90ECE40B31}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB1A7E12-D105-493E-ABF2-0F14422A932D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{965DAE30-A9CB-438C-A08F-EDB9B44A98FE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FAC80296-BE10-4B4C-8EF5-2B75EFA95923}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A0CA137-AF3D-4B51-A99D-7E2CE032F090}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA7DB967-EF7E-4D37-B1A2-C9534B115F17}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BEBEAAEB-68BD-42D5-A95F-312317F85584}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1184E825-C309-4054-8DBD-7389BD9806AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{149CE819-A0F5-41B3-B788-CDE67250DC00}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6FEF3BB-2063-4C50-A538-4E33821CB37B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8A34D39-A31E-4F77-850A-B5CCD07C2253}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F3719876-ADD4-411E-8D27-73547AD8EBA0}" => not found
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiSpyware => Error setting value.
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiVirus => Error setting value.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3958C4B-66E3-4A26-8145-7AB84307CB7E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42F1552B-3304-468B-8705-3B0A5B5AA244}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d73775217f9a14" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\SysWOW64\wininit.exe IS MISSING <==== ATTENTION" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8425736 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 47 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
TEMP.IDEA-PCCULIK.003 => 221709 B
culik48 => 221709 B
Administrator => 221709 B
RecycleBin => 0 B
EmptyTemp: => 8.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:53:23 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s tatíkovým NTB
Bylo smazáno. Změnil se stav k lepšímu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s tatíkovým NTB
Bohužel se vůbec nic nezměnilo. Zase po restartu je úplně prázdná plocha , pomalu nabíhá stále, částečně nefunkční spodní lišta. ještě jsem zjistil, že ani prohlížeč neudrží žádnou historii a musí se vše vždy dělat od začátku jako při nové instalaci prohlížeče.
Re: Problémy s tatíkovým NTB
Administrator (S-1-5-21-919856772-2739524122-988455724-500 - Administrator - Enabled) => C:\Users\Administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
Skus sa prihlasit do uctu administrator
culik48 (S-1-5-21-919856772-2739524122-988455724-1001 - Administrator - Enabled) => C:\Users\TEMP.IDEA-PCCULIK.003
Skus sa prihlasit do uctu administrator
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?