VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu

https://forum.viry.cz:443/viewtopic.php?t=159207

Stránka 1 z 1

Kontrola logu

Napsal: 04 črc 2023 22:52
od danek
Dobrý den,

prosím o kontrolu logu. Zdá se mi, že v přehledu spuštěných procesů jsou nějaké divné názvy. Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2023
Ran by Dan (administrator) on JILM (HP HP Pavilion x360 Convertible 14-dh0xxx) (04-07-2023 23:40:13)
Running from C:\Users\danie\Desktop\FRST64.exe
Loaded Profiles: Dan
Platform: Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <3>
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\ssonsvr.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_5bf497d20ce7fee9\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_5bf497d20ce7fee9\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\BridgeCommunication.exe <2>
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.20.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (ZONER software, a.s. -> ZONER software) C:\Users\danie\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTray.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <18>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_5bf497d20ce7fee9\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4499864 2023-05-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2021-08-19] (Corel Corporation -> WinZip Computing, S.L.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\danie\AppData\Local\Microsoft\Teams\Update.exe [2453728 2021-04-16] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [CiscoSpark] => C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk [1618 2021-07-18] () [File not signed]
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\danie\AppData\Local\WebEx\WebexHost.exe [7754168 2022-05-19] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\danie\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [814240 2022-01-13] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116060024 2022-05-17] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\danie\AppData\Local\slack\slack.exe [310584 2023-06-15] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {34cac06b-2b86-11ed-840a-c0b5d7e075b8} - "E:\autorun.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {576c2d63-b9de-11ed-8437-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {99b07fb4-82ba-11ed-8422-c0b5d7e075b8} - "E:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {ca0e0602-ca27-11eb-8383-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {d896de79-c982-11ec-83f1-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050 J610 series): C:\WINDOWS\system32\HPDiscoPM9311.dll [741536 2021-12-06] (HP Inc. -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\rica6Slm: C:\WINDOWS\system32\rica6Slm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-05-12]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2022-01-17]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02BBAC2C-E0D4-4C23-9ED3-1D6D37B70647} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [680352 2023-06-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {049ACB15-6FC8-4BD9-988B-262A35169D58} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-06-14] (HP Inc. -> HP Inc.)
Task: {15838234-17F2-4AE5-8242-0684AAEB498F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [228888 2023-04-04] (HP Inc. -> HP Inc.)
Task: {1B87C309-4202-47DD-94FF-B5CF2541A8C1} - System32\Tasks\Zoner.Updater.S-1-5-21-93754314-3111490570-4120607304-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [1615168 2023-03-19] (ZONER a.s. -> ZONER a.s.)
Task: {207FDD56-3BDC-4A72-A27A-B5E4E3CA7D6E} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1243544 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {25B02114-8C78-444B-943F-3AE5F0589E85} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {316C40DF-6532-47DB-A2D6-B337C4FBE915} - System32\Tasks\HPCustParticipation HP Deskjet 3050 J610 series => C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPCustPartic.exe [4119200 2021-12-06] (HP Inc. -> Hewlett-Packard Co.)
Task: {33E4629A-4E95-441A-A2A7-8D1B90B6C4E5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F05E4E7-ACFD-4CB6-9DE5-F87BF7CFAFBE} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [164752 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {469A15B7-9FAF-4711-8FC0-E98228F51D45} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [813008 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
Task: {4B843749-2454-4F39-B076-E7E088F6F9E7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-14] (Avast Software s.r.o. -> Avast Software)
Task: {57EAA1EC-22A2-4488-B1F4-1A8AF8A3A1C0} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {61206386-D307-4890-BFD8-60FC33CC5E90} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-04] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {67EFB312-4726-443B-830B-1748E8AE011E} - System32\Tasks\SentryBayUpdateTaskMachineCore => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /c (No File)
Task: {6DD77523-3DB6-466D-BBD7-066FE545F706} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5030808 2023-05-11] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {71635392-FF45-4BD8-B547-F7D0BFAD7964} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {7166787D-836F-42B0-8F24-6470CD7608C1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {75A86C2E-68EB-45FE-9BFD-888AF11BEF25} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2023-04-04] (HP Inc. -> HP Inc.)
Task: {8269B8BC-736D-45F9-A6B0-9121A705EA96} - System32\Tasks\GoogleUpdateTaskMachineCore{22441638-7C7E-472D-955C-604CEFF64354} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-13] (Google LLC -> Google LLC)
Task: {919ECE32-6FEB-40BD-BDED-E37BAACB9776} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {9A1FA14D-EA23-47D5-BC0A-BD54DFF3B6EF} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {9AE8C32D-B3C6-4845-BC58-85D097DA9E1C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2023-04-04] (HP Inc. -> HP Inc.)
Task: {9CFC1269-4331-4D56-9A7E-557F474E585B} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [5029784 2023-05-04] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {A5BC104A-69E2-479F-B977-D66394565874} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {A66C83F5-31DB-45E0-98B8-6F055349F8BF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {A78F9040-768A-4FD8-B091-3F4A6C3CD2AB} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {ACF9BA2E-021A-4109-8350-63DD4111E21C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {B4DF6EA7-3271-45F2-842A-F171A0D658D0} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-04-26] (Avast Software s.r.o. -> Avast Software)
Task: {BC3B693C-FD4B-440C-BC78-FDD6B9A999A1} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-06-14] (HP Inc. -> HP Inc.)
Task: {CC9DC3C3-8BDF-4B41-A19F-8EFA0A2171A2} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2884984 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {E43CC5BF-43F8-4DAA-8BF3-BA8F07C83F1B} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {E52916AC-5178-4821-B19D-DCA60BA7D21B} - System32\Tasks\GoogleUpdateTaskMachineUA{7C17E02D-EA14-44E0-8387-8582BA8D3472} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-13] (Google LLC -> Google LLC)
Task: {E72CA239-3254-4C39-B470-00900658FC15} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {F8378188-4F80-4AB3-A718-AA45DC12A223} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
Task: {FA992740-D279-4EF6-B88C-F479E2A7DCB7} - System32\Tasks\SentryBayUpdateTaskMachineUA => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /ua /installsource scheduler (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\SentryBayUpdateTaskMachineCore.job => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe
Task: C:\WINDOWS\Tasks\SentryBayUpdateTaskMachineUA.job => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.11.254 79.98.72.27 79.98.72.2
Tcpip\..\Interfaces\{082f372d-431e-48b2-b9bd-127e8bf4a128}: [DhcpNameServer] 192.168.11.254 79.98.72.27 79.98.72.2
Tcpip\..\Interfaces\{1f41dc66-e77d-42c0-afd3-917fd95ff16a}: [NameServer] 100.122.0.0
Tcpip\..\Interfaces\{319facf1-c9ca-44a0-b2f9-b15813f65d0a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c6c67d0a-14ee-46f0-a5bd-6c2dbc95ae39}: [DhcpNameServer] 172.168.0.5

Edge:
=======
DownloadDir: C:\Users\danie\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-27]
Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-04]
Edge Extension: (Edge relevant text changes) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-08]

FireFox:
========
FF DefaultProfile: gorjaooa.default
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\gorjaooa.default [2022-05-27]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\gorjaooa.default\Extensions\sp@avast.com.xpi [2019-10-02]
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\8pzs0hk1.default-release-1682693655055 [2023-07-04]
FF Extension: (Add-ons Restricted Domains) - C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\8pzs0hk1.default-release-1682693655055\features\{fd1a120d-40f5-4c3d-ae07-1c36a0973308}\addons-restricted-domains@mozilla.com.xpi [2023-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-06-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\danie\AppData\Roaming\mozilla\plugins\npatgpc.dll [2020-12-17]

Chrome:
=======
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default [2023-07-03]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Dokumenty Google offline) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-25]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-07-03]
CHR Extension: (Cisco Webex Extension) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2022-12-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-22]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2021-11-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2091928 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [5779160 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17477528 2023-05-04] (Avast Software s.r.o. -> AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
S4 CWAUpdaterService; C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe [40544 2020-03-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-04] (Avast Software s.r.o. -> AVAST Software)
S4 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\FileSyncHelper.exe [2218872 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
S4 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\AppHelperCap.exe [860048 2023-05-22] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\DiagsCap.exe [858520 2023-05-22] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\NetworkCap.exe [855488 2023-05-22] (HP Inc. -> HP Inc.)
S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-06-14] (HP Inc. -> HP Inc.)
S4 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_22baab3e5a0042a4\x64\SysInfoCap.exe [859024 2023-05-22] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_5bf497d20ce7fee9\x64\TouchpointAnalyticsClientService.exe [496208 2023-03-16] (HP Inc. -> HP Inc.)
S4 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\OneDriveUpdaterService.exe [2603368 2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10043288 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\NisSrv.exe [3228400 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MsMpEng.exe [133536 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237424 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392832 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272016 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556576 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [704264 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-09-13] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76664 2023-05-11] (Avast Software s.r.o. -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [51112 2022-12-21] (Avast Software s.r.o. -> AVAST Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [498992 2022-06-07] (Avast Software s.r.o. -> WireGuard LLC)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [124952 2022-10-12] (Avast Software s.r.o. -> Windows (R) Win 7 DDK provider)
R3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1049936 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2019-12-17] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [497920 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-07-04 23:38 - 2023-07-04 23:39 - 000052707 _____ C:\Users\danie\Desktop\Addition.txt
2023-07-04 23:37 - 2023-07-04 23:40 - 000035933 _____ C:\Users\danie\Desktop\FRST.txt
2023-07-04 23:35 - 2023-07-04 23:36 - 002383360 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe
2023-07-04 21:43 - 2023-07-04 21:43 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-03 23:55 - 2023-07-03 23:55 - 000222866 _____ C:\Users\danie\Downloads\voucher-DC-5598284.pdf
2023-06-29 23:49 - 2023-06-29 23:49 - 000048104 _____ C:\Users\danie\Downloads\VL-vysledky-23-07.xlsx
2023-06-24 23:35 - 2023-06-24 23:35 - 000259895 _____ C:\Users\danie\Downloads\webticket_1850735.pdf
2023-06-24 23:35 - 2023-06-24 23:35 - 000078336 _____ C:\Users\danie\Downloads\webticket_objednavka_1850735.pdf
2023-06-24 20:26 - 2023-06-24 20:27 - 000078331 _____ C:\Users\danie\Downloads\webticket_objednavka_1850653.pdf
2023-06-24 16:01 - 2023-07-04 23:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-06-18 22:50 - 2023-06-18 22:50 - 000197871 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 12-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000195984 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 01-2023.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000195555 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 10-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000194423 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 08-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000194114 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 09-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000190342 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 06-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000190148 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 07-2022.pdf
2023-06-18 22:50 - 2023-06-18 22:50 - 000084692 _____ C:\Users\danie\Downloads\Vypis poplatku z uctu 1072913030 za 2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000202045 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 04-2023.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000197259 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 05-2023.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000196283 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913030 za 03-2023.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000194011 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 10-2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000191843 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 09-2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000191773 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 06-2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000188205 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 07-2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000188152 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 08-2022.pdf
2023-06-18 22:49 - 2023-06-18 22:49 - 000185443 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 05-2022.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000192301 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 05-2023.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000191620 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 12-2022.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000191456 _____ C:\Users\danie\Downloads\Výpis z běžného účtu za 02-2023.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000191097 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 01-2023.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000190797 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 11-2022.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000190398 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 03-2023.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000189496 _____ C:\Users\danie\Downloads\Vypis z uctu 1072913057 za 04-2023.pdf
2023-06-18 22:48 - 2023-06-18 22:48 - 000084462 _____ C:\Users\danie\Downloads\Vypis poplatku z uctu 1072913057 za 2022.pdf
2023-06-18 21:58 - 2023-06-18 21:58 - 000059283 _____ C:\Users\danie\Downloads\2022-09-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:57 - 2023-06-18 21:57 - 000058304 _____ C:\Users\danie\Downloads\2022-10-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:57 - 2023-06-18 21:57 - 000057998 _____ C:\Users\danie\Downloads\2022-12-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:57 - 2023-06-18 21:57 - 000057446 _____ C:\Users\danie\Downloads\2022-11-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:56 - 2023-06-18 21:56 - 000059011 _____ C:\Users\danie\Downloads\2023-06-08-3620366108-sluzby_v_mobilni_siti-fs-1.pdf
2023-06-18 21:56 - 2023-06-18 21:56 - 000057654 _____ C:\Users\danie\Downloads\2023-02-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:56 - 2023-06-18 21:56 - 000057622 _____ C:\Users\danie\Downloads\2023-01-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:55 - 2023-06-18 21:55 - 000061509 _____ C:\Users\danie\Downloads\2023-06-08-3620366108-sluzby_v_mobilni_siti-d-702178282.pdf
2023-06-18 21:53 - 2023-06-18 21:53 - 000059011 _____ C:\Users\danie\Downloads\2023-06-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:52 - 2023-06-18 21:52 - 000058104 _____ C:\Users\danie\Downloads\2023-04-08-3620366108-sluzby_v_mobilni_siti-d-702178282.pdf
2023-06-18 21:52 - 2023-06-18 21:52 - 000057894 _____ C:\Users\danie\Downloads\2023-03-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:51 - 2023-06-18 21:51 - 000057645 _____ C:\Users\danie\Downloads\2023-04-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 21:50 - 2023-06-18 21:51 - 000049705 _____ C:\Users\danie\Downloads\2023-05-08-3620366108-sluzby_v_mobilni_siti-d-702178282.pdf
2023-06-18 21:50 - 2023-06-18 21:50 - 000058057 _____ C:\Users\danie\Downloads\2023-05-08-3620366108-sluzby_v_mobilni_siti-fs.pdf
2023-06-18 17:06 - 2023-06-18 17:06 - 000017160 _____ C:\Users\danie\Desktop\Sešit4.xlsx
2023-06-16 21:53 - 2023-06-16 21:56 - 2455335104 _____ C:\Users\danie\Downloads\Slunce, seno, erotika (1991) HDTV 1469x1080 HB2800 aac6ch384 (2pass encoding - Spark) s.mkv
2023-06-16 00:27 - 2023-06-16 00:27 - 001829118 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2023-06-16 00:27 - 2023-06-16 00:27 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-06-16 00:27 - 2023-06-16 00:27 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-06-16 00:27 - 2023-06-16 00:27 - 000000000 ____D C:\Program Files\MSBuild
2023-06-16 00:27 - 2023-06-16 00:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2023-06-16 00:27 - 2023-06-16 00:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-06-16 00:12 - 2023-06-16 00:12 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-06-14 00:08 - 2023-06-14 00:08 - 000549632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-13 22:09 - 2023-06-13 22:09 - 000000000 ___HD C:\$WinREAgent
2023-06-13 21:22 - 2023-07-04 09:26 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{7C17E02D-EA14-44E0-8387-8582BA8D3472}
2023-06-13 21:22 - 2023-07-04 09:26 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{22441638-7C7E-472D-955C-604CEFF64354}
2023-06-13 21:22 - 2023-06-29 10:35 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-13 21:22 - 2023-06-29 10:35 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-13 21:22 - 2023-06-13 21:22 - 001369128 _____ (Google LLC) C:\Users\danie\Downloads\ChromeSetup.exe
2023-06-13 21:21 - 2023-06-24 16:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-06-13 21:21 - 2023-06-13 21:21 - 000002055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox — anonymní prohlížení.lnk
2023-06-13 21:21 - 2023-06-13 21:21 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2023-06-13 21:21 - 2023-06-13 21:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-06-11 23:47 - 2023-06-11 23:47 - 000022101 _____ C:\Users\danie\Desktop\Sešit2.xlsx
2023-06-10 21:40 - 2023-07-04 23:04 - 000013121 _____ C:\Users\danie\Desktop\Normandie rozpočet.xlsx
2023-06-10 09:24 - 2023-06-10 09:26 - 1609515007 _____ C:\Users\danie\Downloads\Slunce seno jahody.mp4.mp4
2023-06-09 10:59 - 2023-06-09 10:59 - 000012470 _____ C:\Users\danie\Downloads\Lístky_do_zahrad_Giverny.xlsx
2023-06-09 10:06 - 2023-06-09 10:06 - 001773239 _____ C:\Users\danie\Downloads\mail_prilohy_73fe006f4c9c038f7cf7.zip
2023-06-07 21:55 - 2023-06-07 22:02 - 1235845797 _____ C:\Users\danie\Downloads\Černobyl 1. díl 2019 cz PDR.mkv
2023-06-07 21:55 - 2023-06-07 22:02 - 1189252721 _____ C:\Users\danie\Downloads\Černobyl 4.díl (2019) CZ Dabing---BERI.mkv
2023-06-07 21:54 - 2023-06-07 22:02 - 1257835960 _____ C:\Users\danie\Downloads\Černobyl 2.díl (2019) CZ Dabing---BERI.mkv
2023-06-07 21:54 - 2023-06-07 22:01 - 1298564704 _____ C:\Users\danie\Downloads\Černobyl 3.díl (2019) cz dabing---BERI.mkv
2023-06-07 21:53 - 2023-06-07 22:00 - 1293078980 _____ C:\Users\danie\Downloads\Černobyl 5.díl (2019) CZ Dabing---BERI.mkv

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-07-04 23:40 - 2021-02-09 11:05 - 000000000 ____D C:\FRST
2023-07-04 23:38 - 2020-09-14 13:27 - 001884876 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-04 23:38 - 2019-12-07 16:41 - 000782458 _____ C:\WINDOWS\system32\perfh005.dat
2023-07-04 23:38 - 2019-12-07 16:41 - 000178392 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-04 23:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-04 23:33 - 2022-02-11 09:19 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-04 23:33 - 2021-12-16 00:33 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-04 23:33 - 2019-10-02 19:13 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-04 23:32 - 2021-06-09 10:18 - 000000000 ____D C:\Users\danie\AppData\Local\AvastAntiTrackPremium
2023-07-04 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-04 23:31 - 2022-09-09 10:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-04 23:31 - 2020-09-14 13:26 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-07-04 23:31 - 2020-09-14 13:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-04 23:31 - 2020-09-14 13:19 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-04 23:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-04 23:31 - 2019-12-07 11:03 - 001835008 _____ C:\WINDOWS\system32\config\BBI
2023-07-04 23:31 - 2019-09-30 22:37 - 000000000 ____D C:\ProgramData\AVAST Software
2023-07-04 23:31 - 2019-08-09 00:05 - 000000000 ____D C:\Intel
2023-07-04 23:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-07-04 23:04 - 2019-10-09 22:42 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Excel
2023-07-04 23:01 - 2020-09-14 13:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-04 22:14 - 2019-09-30 22:33 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Word
2023-07-04 21:44 - 2020-09-14 13:26 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-04 21:43 - 2020-10-15 20:02 - 000272016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000704264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000556576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000392832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000237424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-04 21:43 - 2020-04-03 16:11 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-04 21:43 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-04 09:53 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-04 09:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-04 09:26 - 2023-04-20 14:43 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-07-04 09:26 - 2021-09-22 22:56 - 000003158 _____ C:\WINDOWS\system32\Tasks\Zoner.Updater.S-1-5-21-93754314-3111490570-4120607304-1001
2023-07-04 09:26 - 2020-09-14 13:26 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-04 09:26 - 2020-09-14 13:26 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-04 09:26 - 2020-09-14 13:26 - 000002314 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2023-07-04 09:26 - 2020-09-14 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-07-04 08:35 - 2019-05-14 01:54 - 000000000 ____D C:\Program Files\Microsoft Office
2023-07-03 00:48 - 2023-01-03 12:14 - 000000000 ____D C:\Users\danie\AppData\Roaming\Slack
2023-07-03 00:11 - 2023-01-16 20:07 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-03 00:11 - 2020-06-03 07:22 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-29 15:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-26 21:49 - 2021-09-22 22:56 - 000000000 ____D C:\ProgramData\Zoner
2023-06-25 16:04 - 2019-09-23 21:28 - 000000000 ____D C:\Users\danie\AppData\Local\Packages
2023-06-24 17:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-06-24 16:04 - 2023-04-27 12:10 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-06-16 00:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-06-16 00:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-06-16 00:12 - 2020-09-14 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-06-15 23:59 - 2020-03-20 18:55 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache
2023-06-15 23:04 - 2023-04-03 17:07 - 000002210 _____ C:\Users\danie\Desktop\Slack.lnk
2023-06-15 23:04 - 2023-04-03 17:06 - 000000000 ____D C:\Users\danie\AppData\Local\slack
2023-06-15 23:04 - 2023-01-03 12:14 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2023-06-15 23:03 - 2023-05-14 11:22 - 000013306 _____ C:\Users\danie\Desktop\Lístky do zahrad Giverny.xlsx
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-13 22:16 - 2023-05-14 11:31 - 000022571 _____ C:\Users\danie\Desktop\Sešit1.xlsx
2023-06-13 22:15 - 2020-09-14 13:21 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-13 21:56 - 2019-09-27 00:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-13 21:52 - 2019-09-27 00:43 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-10 23:07 - 2021-04-05 15:33 - 000000000 ____D C:\Users\danie\AppData\Roaming\vlc

==================== Files in the root of some directories ========

2020-01-03 01:19 - 2020-01-03 01:19 - 000002151 _____ () C:\Program Files\GOM Player.lnk
2021-01-24 13:05 - 2021-01-24 13:05 - 000370070 _____ () C:\Users\danie\AppData\Roaming\logo_empire_desktop.ico
2020-04-30 12:58 - 2020-04-30 12:58 - 000006908 _____ () C:\Users\danie\AppData\Local\recently-used.xbel
2020-04-05 13:22 - 2020-04-22 14:01 - 000000286 _____ () C:\Users\danie\AppData\Local\zenmap.exe.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Kontrola logu

Napsal: 05 črc 2023 10:11
od Rudy
Zdravím!
Log zkontrolovat mohu, ale aby byla kontrola kompletní, potřebuji vidět ještě 2. log (Addition). Máte ho v souboru addition.txt na ploše. Děkuji.

Re: Kontrola logu

Napsal: 05 črc 2023 16:39
od danek
Zde tedy Addition.txt:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2023
Ran by Dan (04-07-2023 23:41:46)
Running from C:\Users\danie\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) (2020-09-14 11:26:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-93754314-3111490570-4120607304-500 - Administrator - Disabled)
Dan (S-1-5-21-93754314-3111490570-4120607304-1001 - Administrator - Enabled) => C:\Users\danie
DefaultAccount (S-1-5-21-93754314-3111490570-4120607304-503 - Limited - Disabled)
Guest (S-1-5-21-93754314-3111490570-4120607304-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-93754314-3111490570-4120607304-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 23.003.20215 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.3.983.1074 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.1.13415.12138 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.25.7922.7760 - Avast Software)
Cisco Webex Meetings (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\ActiveTouchMeetingClient) (Version: 42.5.3 - Cisco Webex LLC)
Citrix Authentication Manager (HKLM-x32\...\{5EE2BE4A-7CA6-4D05-96C9-72F0DB5B6135}) (Version: 19.12.0.16 - Citrix Systems, Inc.) Hidden
Citrix Screen Casting for Windows (HKLM-x32\...\{AD72F1CD-E4D5-4B34-ADF6-43062ABB2F2B}) (Version: 19.11.100.46 - Citrix Systems, Inc) Hidden
Citrix Web Helper (HKLM-x32\...\{0ECC35D1-D66E-44F5-96AD-F5F9AE7D2153}) (Version: 19.12.0.51 - Citrix Systems, Inc.) Hidden
Citrix Workspace 1912 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 19.12.0.119 - Citrix Systems, Inc.)
Citrix Workspace Inside (HKLM-x32\...\{82926F96-934B-4B81-9CF4-0D97642AF74F}) (Version: 19.12.0.65534 - Citrix Systems, Inc.) Hidden
Citrix Workspace(Aero) (HKLM-x32\...\{03F6DEF8-B74D-4268-A233-382BF7E5A6CD}) (Version: 19.12.0.119 - Citrix Systems, Inc.) Hidden
Citrix Workspace(DV) (HKLM-x32\...\{EBD1B68E-9240-4C68-A17D-97A911440781}) (Version: 19.12.0.119 - Citrix Systems, Inc.) Hidden
Citrix Workspace(SSON) (HKLM-x32\...\{2129D6F4-BE2C-4C2C-B64E-0CE92F4BBD58}) (Version: 19.12.0.119 - Citrix Systems, Inc.) Hidden
Citrix Workspace(USB) (HKLM-x32\...\{666870E5-41C4-4A13-B3D8-860644918AAC}) (Version: 19.12.0.119 - Citrix Systems, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
HP Deskjet 3050 J610 series Nápověda (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Intel(R) Chipset Device Software (HKLM\...\{D4DC16D3-5547-4A3B-A9EB-FF9B4C2EA4A1}) (Version: 10.1.17969.8134 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{4625C928-49BB-44DC-92E3-B9EC0972C72D}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0854C811-6DAD-441D-AB36-2F73631A04A1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{7715518B-08D0-4754-BB81-FE4FC61DFDF7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{4C230277-5515-4B51-B9E6-97880684B10C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{FEB772C1-919E-4145-9691-AFFAC915496F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.16529.20154 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.16529.20154 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.16529.20154 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft Support and Recovery Assistant (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\f9a89bd2a46a7606) (Version: 17.0.4058.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\Teams) (Version: 1.4.00.8872 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{2FAF2A80-5906-467E-8AD2-B83C94383600}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F85F7FF0-5DFF-4BC0-9045-C9573D1BC11F}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.24.28127 (HKLM\...\{8678BA04-D161-45BE-ACA4-CC5D13073F35}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.24.28127 (HKLM\...\{7DC387B8-E6A2-480C-8EF9-A6E51AE81C19}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.24.28127 (HKLM-x32\...\{EAC73207-74BD-4B13-AACF-8C0E751FA4E8}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.24.28127 (HKLM-x32\...\{2E72FA1F-BADB-4337-B8AE-F7C17EC57D1D}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 114.0.2 (x64 cs)) (Version: 114.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 114.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16529.20154 - Microsoft Corporation) Hidden
Online Plug-in (HKLM-x32\...\{B955EF60-1259-47BF-9B24-DFC73F71C0EA}) (Version: 19.12.0.119 - Citrix Systems, Inc.) Hidden
Python 3.10.4 (64-bit) (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\{20ae9c9d-53ff-44e7-973b-efb518e01971}) (Version: 3.10.4150.0 - Python Software Foundation)
Python 3.10.4 Core Interpreter (64-bit) (HKLM\...\{12BDD20C-1666-463B-B473-3473B4BB97A7}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Development Libraries (64-bit) (HKLM\...\{5A092BC3-DC8C-4B40-871A-D50F71058449}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Documentation (64-bit) (HKLM\...\{E2B8DCDD-2047-44A2-ADC7-E526084777B4}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Executables (64-bit) (HKLM\...\{FBCE87D2-C7FC-47AB-B870-A0613A081CFD}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 pip Bootstrap (64-bit) (HKLM\...\{0707FD0B-C82B-4730-8967-D6C3003BCAE0}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Standard Library (64-bit) (HKLM\...\{FFF8FCBE-5551-4DB2-8828-D2FE463981E2}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Tcl/Tk Support (64-bit) (HKLM\...\{E22FBFCD-7312-4CED-BE8C-B8CB8D4EADCA}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Test Suite (64-bit) (HKLM\...\{9C759455-2832-4F78-B2C7-511820072E90}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python 3.10.4 Utility Scripts (64-bit) (HKLM\...\{7CBB42A3-C12B-413C-AA93-65DA4C31D421}) (Version: 3.10.4150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{691AAAA1-FE86-4973-8DA2-6AA2B3327562}) (Version: 3.10.7751.0 - Python Software Foundation)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Self-service Plug-in (HKLM-x32\...\{EAD247BC-48BB-42E7-979A-00D984C80898}) (Version: 19.12.0.51 - Citrix Systems, Inc.) Hidden
SentryBay Update Helper (HKLM-x32\...\{BA38CDB0-B61C-4490-9A9C-92241C05FA33}) (Version: 1.0.0.13544 - SentryBay) Hidden
Skype verze 8.83 (HKLM-x32\...\Skype_is1) (Version: 8.83 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\slack) (Version: 4.32.127 - Slack Technologies Inc.)
Studie vylepšování produktu HP Deskjet 3050 J610 series (HKLM\...\{99F30737-F6F1-4DA5-B1D7-BE7D42E92BD1}) (Version: 28.1.1328.0 - Hewlett-Packard Co.)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
Verbatim Hard Drive Info 1.04 (HKLM-x32\...\Verbatim Hard Drive Info_is1) (Version: - Verbatim)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Webex (HKLM\...\{95987FB7-2B32-50CB-9BEF-5174ADD8049E}) (Version: 41.3.0.18143 - Cisco Systems, Inc)
WinRAR 6.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.20.0 - win.rar GmbH)
WinZip 26.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2413B}) (Version: 26.0.14610 - Corel Corporation)
Základní software zařízení HP Deskjet 3050 J610 series (HKLM\...\{EF0B3791-69B3-4A28-8BA8-2027B75F36D5}) (Version: 28.1.1328.0 - Hewlett-Packard Co.)
Zoner Photo Studio X CS (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\ZPS X) (Version: 19.2109.2.356 - ZONER software)
Zoom (HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\ZoomUMX) (Version: 5.10.6 (5889) - Zoom Video Communications, Inc.)

Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2022-07-27] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-01-11] (Microsoft Corporation)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.3.176.0_x64__dt26b99r8h8gj [2021-01-28] (Realtek Semiconductor Corp)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2019-08-09] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2023-03-22] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.2.0.0_x64__v10z8vjag6ke6 [2023-05-28] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.2.74.0_x64__v10z8vjag6ke6 [2023-05-28] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_146.3.1087.0_x64__v10z8vjag6ke6 [2023-06-24] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.26.74.0_x64__v10z8vjag6ke6 [2023-06-09] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.20.0_x64__v10z8vjag6ke6 [2023-06-11] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-02-08] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-05-28] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-27] (Microsoft Corporation) [MS Ad]
Microsoft Office Outlook Desktop Integration -> C:\Program Files\WindowsApps\Microsoft.OutlookDesktopIntegrationServices_16009.11426.10000.0_x64__8wekyb3d8bbwe [2019-09-27] (Microsoft Corporation)
Notepads App -> C:\Program Files\WindowsApps\19282JackieLiu.Notepads-Beta_1.4.9.0_x64__echhpq9pdbte8 [2023-03-22] (Jackie Liu)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-03] (INTEL CORP) [Startup Task]
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-12] (Microsoft Corporation)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.14.0_x64__kx24dqmazqk8j [2023-05-28] (Random Salad Games LLC)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-07-04] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-07-04] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\danie\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\Users\danie\AppData\Local\WebEx\WebEx64\Meetings_slow\atucfobj.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-93754314-3111490570-4120607304-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\danie\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-04] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-01-17] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-01-17] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\amd64\FileSyncShell64.dll [2021-04-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-01-17] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-01-17] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2021-06-08 05:12 - 2021-06-08 05:12 - 000180224 _____ (Software Security System) [File not signed] C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekc3220.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKLM -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-93754314-3111490570-4120607304-1001 -> {034AB8C8-A73D-4D8B-AA21-D72EAB185BF9} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2023-04-04] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2023-04-04] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-07-03] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\sharepoint.com -> hxxps://zsmilicov-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-10-02 12:33 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\Desktop\Sestenské Dolomity.jpg
DNS Servers: 192.168.11.254 - 79.98.72.27
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\Run: => "EzTiltPenSrvc"
HKLM\...\StartupApproved\Run: => "RtlS5Wake"
HKLM\...\StartupApproved\Run: => "WinZip UN"
HKLM\...\StartupApproved\Run: => "WinZip FAH"
HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "CiscoSpark"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9F8994AD-4273-4D2B-BC29-DDE97070F36C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> )
FirewallRules: [{1D88F7A8-F47B-4FBC-959F-5A6C6AD6256C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> )
FirewallRules: [{7252D2A9-C491-4EAB-ACD5-0EFDF11DB803}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> )
FirewallRules: [{9AD5D310-18E4-45F6-8826-733EA907C78C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> )
FirewallRules: [{0B395872-F7B2-4720-8C40-C7C18DCBF78F}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [{5BDB5B95-AB82-40D6-B7E0-D94AE984B841}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [{60E38CF1-3BB9-474B-9E1E-6115CE07547A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{366BB2ED-FBE1-4502-9781-0EA01CD9D400}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{31E4DAD4-A10A-4626-B101-844138661586}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C8FEBE3C-B913-4F52-AA59-D85A778F4C2C}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2DEEEA67-5665-4579-BAB5-116A05DD181F}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{53AAC872-B028-4154-BEDD-DFE4991F5565}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7296F038-63B6-40EE-85D8-14392A9560AA}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F56D23FC-F894-4CF5-9E2F-7B79FCD853C1}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{62E350F2-F7CE-4BA0-8B7B-02E1D133755E}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{596BBBAD-D9F3-4F8D-B18B-F95F632EB228}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B0379FA9-15FE-4F92-97CD-C6BB3241FF77}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{A067C57B-0D74-4735-9D92-4C96B536605E}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{5A69AC61-DD5A-4E9A-A3A3-AEDD141360D3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7F47CAC2-6CC7-4ED5-B3FA-61CE0483C953}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [UDP Query User{D56759B5-83FB-4044-9835-2F8B362BF1FD}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [TCP Query User{0FAC3121-425D-4282-B8D4-0F71923528EF}C:\users\danie\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\danie\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{538818C2-96BD-4DA9-AC62-C228828D4047}C:\users\danie\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\danie\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E41ED0CE-69A3-47B6-8503-BFBACF12A91A}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B02C691C-4FD6-4F46-924C-2D28B591746A}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E67FE33-84DF-4F94-A79B-2CCCB61BB193}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{9316DFC3-BF2F-4D66-8D49-5E61608F5D92}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2FF4F798-090E-4983-89CA-6B3E4964A8D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3F2A8608-4199-4B2A-87FE-C4E23E1D7421}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C81928E6-0D95-48D3-B6C0-82A85D2C9598}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{52380DC4-1A93-4F6C-8089-D1405CF3EA55}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9968C5C6-112D-4CF5-B555-5F327393B12B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D4F3B2B6-367C-48E0-BD28-035A3A2A6E6E}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{715B40F3-4CE3-4045-A116-9303BFFD2A0F}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{69CC208C-B028-4908-B544-19CB44C1091B}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{10624250-7C00-4A32-8A4F-B38639A55483}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{ABE8FA98-153A-41C0-89C8-6758930ACCCB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{92613464-1C1E-4FCB-A2D1-586C877CF1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F05E6474-B1F3-4723-B11D-A3F972FF8EF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{485535DF-A63A-42DD-9800-0080C62F6D4B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{98707110-F7E8-4E12-9FF3-08E094B8A707}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0E87537-8563-4856-8495-01BA5581D7BD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6E215E7A-98C0-4689-B306-E32EDA6976F3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF23E7A5-4C98-4C03-97C8-A750C4CBFF49}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1C84534A-C93A-42FC-9AC4-3920777BCBB0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9137AEF1-7EB6-4C96-A550-A10CAA99C8E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B4D81AE6-6710-4A39-AD34-06DFFDFFB916}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C505941B-1634-4D84-B23A-623E91B4EBE1}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

03-07-2023 00:09:57 Windows Zálohování

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/04/2023 11:41:55 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1017) (User: NT AUTHORITY)
Description: Sběr dat čítače výkonu od služby ASP.NET_2.0.50727 byl vypnut z důvodu jedné nebo více chyb generovaných knihovnou čítače výkonu pro tuto službu. Chyby, které vyvolaly tuto akci, byly zapsány do protokolu událostí aplikace. Opravte tyto chyby před novým zapnutím čítačů výkonu pro tuto službu.

Error: (07/04/2023 11:41:55 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1021) (User: NT AUTHORITY)
Description: Systém Windows nemůže otevřít 32bitovou knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_perf.dll v 64bitovém prostředí (kód chyby Win32 193). Vyžádejte si od prodejce souboru 64bitovou verzi. Popřípadě můžete 32bitovou knihovnu DLL rozšiřujících čítačů otevřít pomocí 32bitové verze nástroje Sledování výkonu. Pokud chcete tento nástroj použít, otevřete složku Windows a pak složku Syswow64 a spusťte program Perfmon.exe.

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (07/04/2023 11:31:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (07/04/2023 09:41:39 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 07:28:42 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 07:28:41 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 07:28:41 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 07:28:41 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 07:28:41 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR45.

Error: (07/04/2023 06:07:51 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk3\DR43.

Error: (07/04/2023 10:47:47 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{082F372D-431E-48B2-B9BD-127E8BF4A128}, protože jiný počítač v síti má stejný název. Server nelze spustit.


Windows Defender:
================Event[0]:

Date: 2023-05-13 03:41:45
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1084.0
Předchozí verze bezpečnostních informací: 1.387.857.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.20200.4
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.

Date: 2023-05-13 03:41:45
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.389.1084.0
Předchozí verze bezpečnostních informací: 1.387.857.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.20200.4
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.

Date: 2023-05-13 03:41:45
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.20300.3
Předchozí verze modulu: 1.1.20200.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.

Date: 2023-03-21 08:20:11
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.379.57.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19800.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2023-03-21 08:20:11
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.379.57.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19800.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2023-07-04 23:33:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-07-04 23:33:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2023-07-04 23:33:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2023-07-04 23:33:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.07 07/03/2019
Motherboard: HP 85C4
Processor: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz
Percentage of memory in use: 75%
Total physical RAM: 8013.43 MB
Available physical RAM: 1924.26 MB
Total Virtual: 14157.43 MB
Available Virtual: 7432.48 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.26 GB) (Free:43.6 GB) (Model: SK hynix BC501 HFM256GDJTNG-8310A) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:0 GB) (Model: WDC WD10SPZX-60Z10T0) NTFS

\\?\Volume{4b7122c4-c8dd-474c-86b0-9c89f4ce261b}\ () (Fixed) (Total:0.94 GB) (Free:0.08 GB) NTFS
\\?\Volume{73ee637a-f6bf-4282-8ec2-3d4bb3c69d1d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 0C9B4EB9)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola logu

Napsal: 05 črc 2023 16:56
od Rudy
OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FirewallRules: [{0B395872-F7B2-4720-8C40-C7C18DCBF78F}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [{5BDB5B95-AB82-40D6-B7E0-D94AE984B841}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [TCP Query User{7F47CAC2-6CC7-4ED5-B3FA-61CE0483C953}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [UDP Query User{D56759B5-83FB-4044-9835-2F8B362BF1FD}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [{B02C691C-4FD6-4F46-924C-2D28B591746A}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E67FE33-84DF-4F94-A79B-2CCCB61BB193}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{3F2A8608-4199-4B2A-87FE-C4E23E1D7421}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C81928E6-0D95-48D3-B6C0-82A85D2C9598}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{52380DC4-1A93-4F6C-8089-D1405CF3EA55}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9968C5C6-112D-4CF5-B555-5F327393B12B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{10624250-7C00-4A32-8A4F-B38639A55483}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{ABE8FA98-153A-41C0-89C8-6758930ACCCB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{92613464-1C1E-4FCB-A2D1-586C877CF1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F05E6474-B1F3-4723-B11D-A3F972FF8EF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {34cac06b-2b86-11ed-840a-c0b5d7e075b8} - "E:\autorun.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {576c2d63-b9de-11ed-8437-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {99b07fb4-82ba-11ed-8422-c0b5d7e075b8} - "E:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {ca0e0602-ca27-11eb-8383-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {d896de79-c982-11ec-83f1-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {67EFB312-4726-443B-830B-1748E8AE011E} - System32\Tasks\SentryBayUpdateTaskMachineCore => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /c (No File)
Task: {FA992740-D279-4EF6-B88C-F479E2A7DCB7} - System32\Tasks\SentryBayUpdateTaskMachineUA => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /ua /installsource scheduler (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{7C17E02D-EA14-44E0-8387-8582BA8D3472}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{22441638-7C7E-472D-955C-604CEFF64354}
C:\DumpStack.log.tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Kontrola logu

Napsal: 18 črc 2023 13:03
od danek
Zdravím, omlouvám se za zpoždění, byl jsem minulý týden na dovolené.

Posílám log z FRST:

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-07-2023
Ran by Dan (18-07-2023 13:54:20) Run:4
Running from C:\Users\danie\Desktop
Loaded Profiles: Dan
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FirewallRules: [{0B395872-F7B2-4720-8C40-C7C18DCBF78F}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [{5BDB5B95-AB82-40D6-B7E0-D94AE984B841}] => (Allow) C:\Program Files (x86)\SentryBay\ArmoredClient.exe => No File
FirewallRules: [TCP Query User{7F47CAC2-6CC7-4ED5-B3FA-61CE0483C953}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [UDP Query User{D56759B5-83FB-4044-9835-2F8B362BF1FD}C:\users\danie\downloads\winbox.exe] => (Block) C:\users\danie\downloads\winbox.exe => No File
FirewallRules: [{B02C691C-4FD6-4F46-924C-2D28B591746A}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5E67FE33-84DF-4F94-A79B-2CCCB61BB193}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{3F2A8608-4199-4B2A-87FE-C4E23E1D7421}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C81928E6-0D95-48D3-B6C0-82A85D2C9598}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{52380DC4-1A93-4F6C-8089-D1405CF3EA55}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9968C5C6-112D-4CF5-B555-5F327393B12B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{10624250-7C00-4A32-8A4F-B38639A55483}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{ABE8FA98-153A-41C0-89C8-6758930ACCCB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{92613464-1C1E-4FCB-A2D1-586C877CF1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{F05E6474-B1F3-4723-B11D-A3F972FF8EF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {34cac06b-2b86-11ed-840a-c0b5d7e075b8} - "E:\autorun.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {576c2d63-b9de-11ed-8437-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {99b07fb4-82ba-11ed-8422-c0b5d7e075b8} - "E:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {ca0e0602-ca27-11eb-8383-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\...\MountPoints2: {d896de79-c982-11ec-83f1-c0b5d7e075b8} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {67EFB312-4726-443B-830B-1748E8AE011E} - System32\Tasks\SentryBayUpdateTaskMachineCore => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /c (No File)
Task: {FA992740-D279-4EF6-B88C-F479E2A7DCB7} - System32\Tasks\SentryBayUpdateTaskMachineUA => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /ua /installsource scheduler (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{7C17E02D-EA14-44E0-8387-8582BA8D3472}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{22441638-7C7E-472D-955C-604CEFF64354}
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B395872-F7B2-4720-8C40-C7C18DCBF78F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5BDB5B95-AB82-40D6-B7E0-D94AE984B841}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7F47CAC2-6CC7-4ED5-B3FA-61CE0483C953}C:\users\danie\downloads\winbox.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D56759B5-83FB-4044-9835-2F8B362BF1FD}C:\users\danie\downloads\winbox.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B02C691C-4FD6-4F46-924C-2D28B591746A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E67FE33-84DF-4F94-A79B-2CCCB61BB193}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F2A8608-4199-4B2A-87FE-C4E23E1D7421}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C81928E6-0D95-48D3-B6C0-82A85D2C9598}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{52380DC4-1A93-4F6C-8089-D1405CF3EA55}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9968C5C6-112D-4CF5-B555-5F327393B12B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10624250-7C00-4A32-8A4F-B38639A55483}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ABE8FA98-153A-41C0-89C8-6758930ACCCB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92613464-1C1E-4FCB-A2D1-586C877CF1FF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F05E6474-B1F3-4723-B11D-A3F972FF8EF3}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34cac06b-2b86-11ed-840a-c0b5d7e075b8} => removed successfully
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{576c2d63-b9de-11ed-8437-c0b5d7e075b8} => removed successfully
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{99b07fb4-82ba-11ed-8422-c0b5d7e075b8} => removed successfully
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ca0e0602-ca27-11eb-8383-c0b5d7e075b8} => removed successfully
HKU\S-1-5-21-93754314-3111490570-4120607304-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d896de79-c982-11ec-83f1-c0b5d7e075b8} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
ask: {67EFB312-4726-443B-830B-1748E8AE011E} - System32\Tasks\SentryBayUpdateTaskMachineCore => C:\Program Files (x86)\SentryBay\Update\SentryBayUpdate.exe /c (No File) => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA992740-D279-4EF6-B88C-F479E2A7DCB7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA992740-D279-4EF6-B88C-F479E2A7DCB7}" => removed successfully
C:\WINDOWS\System32\Tasks\SentryBayUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SentryBayUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{7C17E02D-EA14-44E0-8387-8582BA8D3472} => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{22441638-7C7E-472D-955C-604CEFF64354} => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 786432 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 964699962 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 2108817 B
Edge => 0 B
Chrome => 17667217 B
Firefox => 1153790055 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4672 B
NetworkService => 102950912 B
danie => 120001038 B
defaultuser100000 => 120001038 B
SAS => 120001038 B
SAS.JAVOR => 120001038 B
SAS.JILM => 120001038 B

RecycleBin => 64294145 B
EmptyTemp: => 2.7 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 18-07-2023 14:01:14)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 14:01:14 ====

Re: Kontrola logu

Napsal: 18 črc 2023 14:41
od Rudy
Bylo smazáno. Log by již měl být OK.

Re: Kontrola logu

Napsal: 18 črc 2023 17:03
od danek
OK, děkuji !

Re: Kontrola logu

Napsal: 18 črc 2023 18:19
od Rudy
Rádo se stalo! :-)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz