Dobrý den prosím o preventivní kontrolu.
Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2023
Ran by User (administrator) on LAPTOP-2PIQM58C (LENOVO 81HN) (15-07-2023 21:07:57)
Running from C:\Users\User\Downloads\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\Kamo\Kamo.exe ->) (PIRIFORM SOFTWARE LIMITED -> The CefSharp Authors) C:\Program Files (x86)\Kamo\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxEM.exe
(explorer.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo(beijing) Limited) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7177cf092021a5b2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files (x86)\Kamo\KamoSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.132.0625.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform) C:\Program Files (x86)\Kamo\Kamo.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [479632 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123262376 2023-02-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\Installer\chrmstp.exe [2023-07-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B401E9E-9862-4F88-9B32-EE839E7CC3F2} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
Task: {3C7D084A-669E-4785-9426-F695B1F4E056} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon)
Task: {4D575BD2-E416-450A-A0AC-247C6AC13A16} - System32\Tasks\CCleanerUpdateTaskMachineUA
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B66DFA01-E411-45A5-9D46-5CD32D9BE368} - System32\Tasks\CCleanerUpdateTaskMachineCore
Task: {EC1EC4FC-BFBC-4916-B01F-7B6609434D19} - System32\Tasks\User_Feed_Synchronization-{A46FC3AA-3A8C-40E6-A5DC-1C476F158411}
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {1AC32DB5-03B9-47D4-AF40-C2B9A859BD40} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
Task: {C4EA5AE9-2D8D-4265-923B-AEAF5FC5941A} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1243544 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
Task: {B24A9672-C963-4076-9EA0-6A475EB8F52A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5030808 2023-05-05] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {68A4877B-542D-44CE-97AC-6DFEA214748B} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-04-26] (Avast Software s.r.o. -> Avast Software)
Task: {FAB41062-B159-4873-8947-142B99EEFB08} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {E7D6577A-94B8-4060-B1CA-023DEBD7C1AD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {79EA82B4-3ABC-4E57-AE78-092A45965E29} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "32a29b2a-66d6-4d31-9035-9ab2caba1be2" --version "6.13.10517" --silent
Task: {15BE7814-7EB0-4507-8BAD-A095F18A2DF5} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FE36CE57-D1BA-4928-9911-87200C04BAA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {99AC8241-9937-4E5E-8050-745E4A914CC3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {9E7EB639-9C3D-4EAE-A272-31154829C7F6} - System32\Tasks\Kamo\KamoStart => C:\Program Files (x86)\Kamo\Kamo.exe [911776 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform)
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {977DE12D-4A31-4949-B158-71C8401038F4} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {2ECABAE8-0F4D-4CEA-BAD5-8CBCC349AC02} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {31FE7241-34B0-492C-BFAC-5965FB2161ED} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {D3310A7B-2DBF-42F9-9C16-2AD729AC2470} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {377D3266-BCDB-45B2-9817-7EC9994BF7D9} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0F2AD50E-1AC2-4CC0-B148-843978649D3E} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {3594254E-AF7A-418E-8CAC-FEBC1AE87D9E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {E9A05FB2-32C4-48EC-AFF3-DDC9F166CE5A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {C8E67FE6-C28A-4CA4-9550-E294C9FCAA51} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {02ABA556-A8B3-4375-B4A6-9A9C379FE597} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {553C01BB-FAE4-4356-ADC6-3F8B113FDD3C} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0EB3F159-42D7-42DC-A2D5-FA59F3607C23} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5308592 2023-07-12] (Microsoft Windows -> Microsoft Corporation)
Task: {1C6E1B52-DB32-48B0-9C0A-08F1E9C5B511} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-07-12] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {73BA8F20-AEB9-41D3-A524-3D9997018061} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-07-12] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0efff675-9353-4fb1-b4aa-849d754b5392}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-09]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF DefaultProfile: em4ureuj.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default [2023-07-09]
FF Homepage: Mozilla\Firefox\Profiles\em4ureuj.default -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default\searchplugins\yandex.ru-20231113.xml [2023-03-13]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\w0bpcnq4.default-release [2023-07-15]
FF Homepage: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.seznam.cz
FF Notifications: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.youtube.com; hxxps://www.jenzeny.cz; hxxps://www.mesec.cz; hxxps://wareznet.catsboard.com
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-07-09]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://yandex.ru/search/?__PARAM__from=chromesearch&text={searchTerms}
CHR DefaultSearchKeyword: Default -> yandex.ru
CHR DefaultSuggestURL: Default -> hxxps://suggest.yandex.net/suggest-ff.cgi?uil=ru&part={searchTerms}
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-19]
CHR Extension: (Яндекс) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibknafobnmndicojahlppolcaaibngjf [2023-06-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-08]
CHR HKU\S-1-5-21-340613129-453698752-3828940104-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
Opera:
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2023-07-09]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-28]
Yandex:
=======
YAN Profile: C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Default [2023-07-09]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\elevation_service.exe [2034736 2023-06-27] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4958096 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602544 2018-10-02] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 KamoSvc; C:\Program Files (x86)\Kamo\KamoSvc.exe [6709664 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe [32960 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10043288 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31368 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237424 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272016 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556576 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [704264 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76664 2023-05-05] (Avast Software s.r.o. -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [114104 2022-12-14] (Piriform Software Ltd -> Windows (R) Win 7 DDK provider)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [163644 2022-04-16] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-15 21:07 - 2023-07-15 21:08 - 000027867 _____ C:\Users\User\Downloads\FRST.txt
2023-07-15 21:06 - 2023-07-15 21:08 - 000000000 ____D C:\FRST
2023-07-15 21:05 - 2023-07-15 21:05 - 002384384 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2023-07-15 21:00 - 2023-07-15 21:00 - 000000000 ____D C:\Users\User\OneDrive\Documents\Square Enix
2023-07-15 20:58 - 2023-07-15 20:58 - 000000000 ____D C:\ProgramData\Steam
2023-07-15 20:27 - 2023-07-15 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
2023-07-15 20:18 - 2023-07-15 20:18 - 000000000 ____D C:\Program Files (x86)\Square Enix
2023-07-15 20:15 - 2023-07-15 20:15 - 000000000 ____D C:\Program Files (x86)\Just Cause 2
2023-07-15 16:39 - 2023-07-15 20:14 - 000000000 ____D C:\Users\User\Downloads\Just Cause 2 CZ Complete
2023-07-12 17:38 - 2023-07-12 17:38 - 000000000 ___HD C:\$WinREAgent
2023-07-11 18:12 - 2023-07-11 18:12 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-11 16:17 - 2023-07-11 16:17 - 000042618 _____ C:\Users\User\Downloads\Zpátky do školy.odt
2023-07-11 16:17 - 2023-07-11 16:17 - 000036367 _____ C:\Users\User\Downloads\Seznámení s Tupounem.odt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-15 21:06 - 2021-08-20 20:36 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2023-07-15 21:01 - 2021-12-17 17:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-15 21:01 - 2021-09-08 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-15 21:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-15 20:49 - 2022-02-12 11:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-15 20:30 - 2022-10-30 06:32 - 000000000 ____D C:\hry
2023-07-15 20:29 - 2021-12-28 17:23 - 000000000 ____D C:\Users\User\AppData\Local\JDownloader 2.0
2023-07-15 20:12 - 2022-10-30 06:43 - 000000000 ____D C:\Users\User\OneDrive\Documents\FIFA 14
2023-07-15 19:41 - 2022-09-21 12:31 - 000003044 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-15 19:41 - 2022-09-21 12:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-15 19:41 - 2021-12-11 17:09 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-15 19:41 - 2021-09-08 22:33 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-07-15 19:41 - 2021-09-08 22:33 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-07-15 19:41 - 2021-08-20 20:17 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-15 19:41 - 2021-08-20 20:17 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2023-07-15 19:41 - 2021-08-03 04:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-15 19:41 - 2021-08-03 04:23 - 000003374 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d78802f0d9ef06
2023-07-15 19:41 - 2021-08-03 03:00 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-15 19:41 - 2021-08-03 02:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-15 18:12 - 2021-08-20 19:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-07-15 14:57 - 2022-12-14 18:40 - 000000000 ____D C:\Users\User\AppData\Local\Kamo
2023-07-15 14:57 - 2022-12-14 18:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Kamo
2023-07-15 14:57 - 2021-08-20 20:17 - 000000000 ____D C:\Program Files\CCleaner
2023-07-15 14:57 - 2021-08-03 01:36 - 000000000 ___RD C:\Users\User\OneDrive
2023-07-15 14:57 - 2021-08-03 01:34 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2023-07-15 13:41 - 2021-08-03 02:56 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-15 13:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-15 13:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-13 16:34 - 2021-09-08 22:35 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-07-13 13:10 - 2021-08-20 19:55 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-07-13 00:14 - 2023-04-13 15:35 - 000002381 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-12 23:50 - 2021-08-20 20:35 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-07-12 23:50 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-07-12 23:50 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-12 19:48 - 2021-08-03 03:02 - 001693864 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-12 19:48 - 2019-12-07 16:43 - 000719668 _____ C:\WINDOWS\system32\perfh005.dat
2023-07-12 19:48 - 2019-12-07 16:43 - 000145794 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-12 19:48 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-12 19:40 - 2022-12-14 18:40 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-07-12 19:40 - 2021-08-20 19:51 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-12 19:40 - 2021-08-04 11:28 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2023-07-12 19:40 - 2021-08-03 03:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-12 19:40 - 2021-08-03 02:56 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-12 19:40 - 2021-08-03 01:14 - 000000000 ___HD C:\Intel
2023-07-12 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-12 18:12 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-07-12 18:11 - 2021-08-03 02:56 - 000296848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-12 18:09 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-12 17:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-12 17:46 - 2021-08-03 03:00 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-12 17:37 - 2021-08-03 03:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 17:34 - 2021-08-03 03:22 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 09:42 - 2021-08-03 03:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-07-11 18:12 - 2021-08-20 19:52 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000704264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000556576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000392832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000272016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000237424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000031368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-11 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-09 00:54 - 2021-08-03 01:52 - 000000000 ____D C:\Users\User\AppData\Local\Lenovo
2023-07-09 00:49 - 2021-08-03 01:00 - 000000000 ____D C:\ProgramData\Lenovo
2023-07-03 16:07 - 2022-10-29 15:33 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-07-03 16:07 - 2022-10-29 15:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-07-01 20:40 - 2023-03-10 09:59 - 000000000 ____D C:\Users\User\OneDrive\Documents\Euro Truck Simulator 2
2023-06-29 03:19 - 2021-09-08 22:33 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-23 01:01 - 2021-12-26 19:05 - 000000000 ____D C:\Program Files\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-16 00:51 - 2022-11-19 10:19 - 000000000 ____D C:\Users\User\Downloads\Ostatní
2023-06-15 16:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-15 16:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-15 16:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-15 16:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
______________________________________________________________________________________________________________________________________________________________________
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-07-2023
Ran by User (15-07-2023 21:09:22)
Running from C:\Users\User\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) (2021-08-03 01:01:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-340613129-453698752-3828940104-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-340613129-453698752-3828940104-503 - Limited - Disabled)
Guest (S-1-5-21-340613129-453698752-3828940104-501 - Limited - Disabled)
User (S-1-5-21-340613129-453698752-3828940104-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-340613129-453698752-3828940104-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 114.0.21608.201 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.0.0.1932 - Disc Soft Ltd)
Euro Truck Simulator 2 - ElAmigos verze 1.40.5.0 (HKLM-x32\...\{9384C835-3AAB-4AEB-A190-765E3FB774E1}_is1) (Version: 1.40.5.0 - SCS Software)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1135 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{93088816-1328-4885-B7E9-7F7FBEE06A16}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{9CD3FE14-6FAD-4F91-B767-E672A9C4DED9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{911932DA-17C1-46CD-AE82-5A4BEBCC5886}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Just Cause 2 (HKLM-x32\...\Just Cause 2_is1) (Version: - )
Kamo (HKLM-x32\...\Kamo) (Version: 4.8.1258.1658 - Piriform)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.55.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.82 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.79 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\OneDriveSetup.exe) (Version: 23.132.0625.0001 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{750E1D74-BE38-4ADA-9EAC-EE378059A8E0}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{071D1D08-11BA-44FF-9A91-861EF3434FB9}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Zoo Tycoon (HKLM-x32\...\Zoo Tycoon 1.0) (Version: - )
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 115.0.2 (x64 cs)) (Version: 115.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.0.1 - Mozilla)
OpenOffice 4.1.13 (HKLM-x32\...\{D86F0E67-2C02-4DFF-A46A-6871BA809A51}) (Version: 4.113.9810 - Apache Software Foundation)
OpenOffice 4.1.13 Language Pack (Czech) (HKLM-x32\...\{84CF4426-EF31-44D8-BD1B-6FDDFEDD586A}) (Version: 4.113.9810 - Apache Software Foundation)
Skype verze 8.94 (HKLM-x32\...\Skype_is1) (Version: 8.94 - Skype Technologies S.A.)
WhatsApp (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\WhatsApp) (Version: 2.2306.9 - WhatsApp)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Yandex (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\YandexBrowser) (Version: 23.1.4.782 - ООО «ЯНДЕКС»)
Zoom (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\ZoomUMX) (Version: 5.13.7 (12602) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Photoshop Express -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.11.425.0_x64__ynb6jyjzte8ga [2023-04-28] (Adobe Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.3011.0_x64__rz1tebttyb220 [2023-06-15] (Dolby Laboratories)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.249.0_x64__rz1tebttyb220 [2023-07-15] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-26] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-08] (Microsoft Corporation)
DSLR Camera Photo Effects -> C:\Program Files\WindowsApps\35450PhotoCoolApps.DSLRCameraPhotoEffects_2.0.0.0_x64__61cxy7b35vdsg [2022-03-21] (Photo Cool Apps)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.59.5902.0_x86__ytsefhwckbdv6 [2023-07-01] (G5 Entertainment AB)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-08-03] (INTEL CORP)
Jewels of Rome: Match gems to restore the city -> C:\Program Files\WindowsApps\828B5831.JewelsofRomeMatchgemstorestorethecity_1.49.4901.0_x64__ytsefhwckbdv6 [2023-07-04] (G5 Entertainment AB)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8 [2023-06-12] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4 [2023-06-07] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.4.0_x64__w1wdnht996qgy [2023-06-25] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-01] (INTEL CORP) [Startup Task]
PIP Camera - Creative Photo Frames & Photo Editor -> C:\Program Files\WindowsApps\35450PhotoCoolApps.PIPCamera-CreativePhotoFramesPh_2.0.3.0_x64__61cxy7b35vdsg [2022-07-08] (Photo Cool Apps)
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.12518.0_x86__m916jedk64snt [2021-08-04] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.4112.0_x86__m916jedk64snt [2021-12-29] (CYBERLINKCOM CORPORATION)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.582.400.0_x86__55nm5eh3cm0pr [2023-07-09] (ROBLOX Corporation)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-27] (Microsoft Corporation)
SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.53.0_x86__qt57b6kdvhcfw [2021-08-04] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-22] (Microsoft Studios) [MS Ad]
Solitaire Cruise Tripeaks Card Game -> C:\Program Files\WindowsApps\SamfinacoLimited.SolitaireCruiseTripeaksCardGame_4.5.27.0_x64__aj0b1qrpyg0w6 [2023-06-15] (Samfinaco Limited)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0 [2023-07-10] (Spotify AB) [Startup Task]
Survivors: the Quest -> C:\Program Files\WindowsApps\828B5831.SurvivorstheQuest_1.14.1104.0_x86__ytsefhwckbdv6 [2023-05-27] (G5 Entertainment AB)
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2022-03-21] (Bytedance Pte. Ltd.)
UnRar Metro -> C:\Program Files\WindowsApps\1253QUANTUMVM.UNRARMETRO_56.1.0.0_x64__ckbnxvahp5f44 [2022-12-30] (QuantumVM)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> DefaultScope 66638e92-c187-11ed-8610-482ae373fa6f URL =
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> {3FA1801B-B193-46D2-A6BF-57330148E3AA} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2023-06-28 11:27 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{768AAF8D-A23F-404A-9C0A-EF323361071C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF3F56A8-70A1-444A-9B65-B2BB3D596D9F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E0B55DDC-07A7-4EA0-BBA1-56F584CCC1D1}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DA0904CC-DBF9-40A7-9658-A64DC7C1A30D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0B76D09-37FA-4CA6-8D8C-B4B2FE6084A6}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{622D2830-AE7E-48B6-93A7-6A8AE5C7F46F}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8D7C29C1-453D-4A8E-820A-F99856425461}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{536AAF44-5624-40AB-AB35-6D99DBF64F5B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{80716350-97CE-45AA-986A-B50A1887D843}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA065CE3-4D8F-4016-8226-00C85254A1B5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A361C9A-3C47-4899-814F-896318A0EE03}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{8B286FD1-2460-4A3D-B4AA-024052BD0D13}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{C7C84BA1-F14C-4219-99AC-03DEA4D2544F}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3E26B455-B256-4033-8DE7-5C67A550302C}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{45450060-2E0F-44E1-932C-2F050599C745}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A09913CD-D8E4-4E4B-BD49-623FCAE1AFA6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{685E25B7-A34E-4FCA-A597-ABBCCB865CAA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{369B8188-B355-4DAF-A9ED-7DACDC8388F9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B0EFFDFD-6571-419D-9BED-6C1AF92657E5}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FirewallRules: [{C5817133-A5D6-4692-8512-6B6DDCC67B1D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77611467-0EF8-4695-8287-D0C46FDFF19F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B9488B1-9541-412C-93AB-87664669C499}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{238B1DFC-60D2-4338-A29B-4C525F10BE6A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B7D21F46-4A21-4913-AD96-A3D228643567}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{696285C6-57CF-40DC-952A-932CA1C48739}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D2E3137-741C-40D2-9805-1923FE8876A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6723ECA8-E07F-4A93-8D08-A53A563A13A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B261FED5-84B2-41D0-A017-F1C7A4E8BF15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23990219-D76D-4A3C-811B-BECF010E580F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{549E2943-46E3-4E18-8E96-AC7DE8F42000}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463158F3-82E2-4D1E-B908-6057F5EBF1E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A2ADFF5-1A37-43A8-8A63-BC33C4D2399A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3A0457CE-EEC0-4B8C-8302-F2B8C212ECB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{98F20C75-176C-4993-B0A8-A87F10914B15}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.79\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{22A990B1-77D3-4EC8-B097-2F9FAB6E7E2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/15/2023 09:06:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x4c48
Čas spuštění chybující aplikace: 0x01d9b74f865df24e
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: dd0f0668-b91d-4e5f-906d-767fb1938115
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:00:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x3b70
Čas spuštění chybující aplikace: 0x01d9b74e9de1ccfc
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 04e39f5f-fb3f-4fc9-bafc-3f4a1e112d00
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:00:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x265c
Čas spuštění chybující aplikace: 0x01d9b74e9296dfb4
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 2aafd846-f870-419c-ad40-8e77694b3ed7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 08:58:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x1368
Čas spuštění chybující aplikace: 0x01d9b74e4f868b66
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 60dd5152-d4ad-4e21-92c7-999c3508ee57
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/14/2023 10:09:06 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/14/2023 08:36:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: fifa14.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Kód výjimky: 0xc0000005
Posun chyby: 0x02635869
ID chybujícího procesu: 0xd0c
Čas spuštění chybující aplikace: 0x01d9b682225b8ea8
Cesta k chybující aplikaci: C:\hry\FIFA 14\Game\fifa14.exe
Cesta k chybujícímu modulu: C:\hry\FIFA 14\Game\fifa14.exe
ID zprávy: 49b47fe7-c1e6-458e-b692-2255242ecd0d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/14/2023 08:36:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: fifa14.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Kód výjimky: 0xc0000005
Posun chyby: 0x02635869
ID chybujícího procesu: 0xd0c
Čas spuštění chybující aplikace: 0x01d9b682225b8ea8
Cesta k chybující aplikaci: C:\hry\FIFA 14\Game\fifa14.exe
Cesta k chybujícímu modulu: C:\hry\FIFA 14\Game\fifa14.exe
ID zprávy: fd11259f-de92-47b6-ae13-b498b9d74ae6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/13/2023 10:09:07 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
System errors:
=============
Error: (07/15/2023 03:02:47 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 02:39:14 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy!ShellFeedsUI.AppXfbff151h5bmghg166fvn34ccayg70vts.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 01:46:26 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 01:40:55 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (07/15/2023 06:58:42 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 06:30:27 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 06:30:27 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/15/2023 04:54:57 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===============
Date: 2023-07-15 18:08:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 8VCN29WW 05/17/2021
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 71%
Total physical RAM: 7613.43 MB
Available physical RAM: 2168.83 MB
Total Virtual: 9277.43 MB
Available Virtual: 2352.77 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:237.23 GB) (Free:10.38 GB) (Model: WDC PC SN520 SDAPMUW-256G-1101) NTFS
\\?\Volume{24033886-4660-4d56-b592-09873c79ced0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{fa85c194-b754-44ca-a842-8136a7efa10a}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 30CA1954)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola
ahoj,
vycisti PC s ADWCleanerom
vycisti PC s ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Vyčištěno cleanerem
posílám log:
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-17-2023
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.3208)
# Cleaned: 4
# Awaiting reboot:1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\User\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Needs Reboot Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
***** Reboot Required to Complete *****
***** [ Folders ] *****
Cleaning failed C:\Windows\LENOVO\IMCONTROLLER
*************************
AdwCleaner[S00].txt - [1859 octets] - [21/09/2021 16:10:45]
AdwCleaner[C00].txt - [2353 octets] - [21/09/2021 16:11:13]
AdwCleaner[S01].txt - [1834 octets] - [09/10/2021 20:03:50]
AdwCleaner[C01].txt - [2248 octets] - [09/10/2021 20:04:07]
AdwCleaner[S02].txt - [1863 octets] - [01/12/2021 01:07:22]
AdwCleaner[C02].txt - [2264 octets] - [01/12/2021 01:07:40]
AdwCleaner[S03].txt - [1894 octets] - [01/12/2021 01:09:14]
AdwCleaner[C03].txt - [2282 octets] - [01/12/2021 01:09:34]
AdwCleaner[S04].txt - [2347 octets] - [27/12/2021 10:15:54]
AdwCleaner[C04].txt - [2600 octets] - [27/12/2021 10:16:18]
AdwCleaner[S05].txt - [2469 octets] - [21/03/2022 13:14:35]
AdwCleaner[C05].txt - [2722 octets] - [21/03/2022 13:15:11]
AdwCleaner[S06].txt - [3222 octets] - [18/03/2023 22:46:54]
AdwCleaner[C06].txt - [2825 octets] - [18/03/2023 22:47:11]
AdwCleaner[S07].txt - [2728 octets] - [18/03/2023 22:47:29]
AdwCleaner[C07].txt - [2981 octets] - [18/03/2023 22:47:49]
AdwCleaner[S08].txt - [2456 octets] - [30/03/2023 08:48:27]
AdwCleaner[C08].txt - [2657 octets] - [30/03/2023 08:48:54]
AdwCleaner[S09].txt - [2578 octets] - [03/04/2023 18:17:56]
AdwCleaner[C09].txt - [2779 octets] - [03/04/2023 18:18:15]
AdwCleaner[S10].txt - [2700 octets] - [11/04/2023 19:40:37]
AdwCleaner[C10].txt - [2901 octets] - [11/04/2023 19:40:56]
AdwCleaner[S11].txt - [2822 octets] - [19/04/2023 13:52:49]
AdwCleaner[C11].txt - [3023 octets] - [19/04/2023 13:53:09]
AdwCleaner[S12].txt - [2944 octets] - [22/04/2023 23:26:37]
AdwCleaner[C12].txt - [3145 octets] - [22/04/2023 23:26:58]
AdwCleaner[S13].txt - [3460 octets] - [01/06/2023 00:22:51]
AdwCleaner[C13].txt - [3887 octets] - [01/06/2023 00:23:12]
AdwCleaner[S14].txt - [3727 octets] - [06/06/2023 11:45:34]
AdwCleaner[C14].txt - [4072 octets] - [06/06/2023 11:45:58]
AdwCleaner[S15].txt - [3557 octets] - [16/06/2023 01:00:23]
AdwCleaner[C15].txt - [3971 octets] - [16/06/2023 01:00:47]
AdwCleaner[S16].txt - [3588 octets] - [23/06/2023 01:00:36]
AdwCleaner[C16].txt - [3989 octets] - [23/06/2023 01:01:00]
AdwCleaner[S17].txt - [3710 octets] - [29/06/2023 21:57:20]
AdwCleaner[C17].txt - [4111 octets] - [29/06/2023 21:57:45]
AdwCleaner[S18].txt - [3923 octets] - [09/07/2023 00:48:00]
AdwCleaner[C18].txt - [4337 octets] - [09/07/2023 00:48:20]
AdwCleaner[S19].txt - [4045 octets] - [17/07/2023 16:30:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C19].txt ##########
posílám log:
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-17-2023
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.3208)
# Cleaned: 4
# Awaiting reboot:1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\User\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Needs Reboot Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
***** Reboot Required to Complete *****
***** [ Folders ] *****
Cleaning failed C:\Windows\LENOVO\IMCONTROLLER
*************************
AdwCleaner[S00].txt - [1859 octets] - [21/09/2021 16:10:45]
AdwCleaner[C00].txt - [2353 octets] - [21/09/2021 16:11:13]
AdwCleaner[S01].txt - [1834 octets] - [09/10/2021 20:03:50]
AdwCleaner[C01].txt - [2248 octets] - [09/10/2021 20:04:07]
AdwCleaner[S02].txt - [1863 octets] - [01/12/2021 01:07:22]
AdwCleaner[C02].txt - [2264 octets] - [01/12/2021 01:07:40]
AdwCleaner[S03].txt - [1894 octets] - [01/12/2021 01:09:14]
AdwCleaner[C03].txt - [2282 octets] - [01/12/2021 01:09:34]
AdwCleaner[S04].txt - [2347 octets] - [27/12/2021 10:15:54]
AdwCleaner[C04].txt - [2600 octets] - [27/12/2021 10:16:18]
AdwCleaner[S05].txt - [2469 octets] - [21/03/2022 13:14:35]
AdwCleaner[C05].txt - [2722 octets] - [21/03/2022 13:15:11]
AdwCleaner[S06].txt - [3222 octets] - [18/03/2023 22:46:54]
AdwCleaner[C06].txt - [2825 octets] - [18/03/2023 22:47:11]
AdwCleaner[S07].txt - [2728 octets] - [18/03/2023 22:47:29]
AdwCleaner[C07].txt - [2981 octets] - [18/03/2023 22:47:49]
AdwCleaner[S08].txt - [2456 octets] - [30/03/2023 08:48:27]
AdwCleaner[C08].txt - [2657 octets] - [30/03/2023 08:48:54]
AdwCleaner[S09].txt - [2578 octets] - [03/04/2023 18:17:56]
AdwCleaner[C09].txt - [2779 octets] - [03/04/2023 18:18:15]
AdwCleaner[S10].txt - [2700 octets] - [11/04/2023 19:40:37]
AdwCleaner[C10].txt - [2901 octets] - [11/04/2023 19:40:56]
AdwCleaner[S11].txt - [2822 octets] - [19/04/2023 13:52:49]
AdwCleaner[C11].txt - [3023 octets] - [19/04/2023 13:53:09]
AdwCleaner[S12].txt - [2944 octets] - [22/04/2023 23:26:37]
AdwCleaner[C12].txt - [3145 octets] - [22/04/2023 23:26:58]
AdwCleaner[S13].txt - [3460 octets] - [01/06/2023 00:22:51]
AdwCleaner[C13].txt - [3887 octets] - [01/06/2023 00:23:12]
AdwCleaner[S14].txt - [3727 octets] - [06/06/2023 11:45:34]
AdwCleaner[C14].txt - [4072 octets] - [06/06/2023 11:45:58]
AdwCleaner[S15].txt - [3557 octets] - [16/06/2023 01:00:23]
AdwCleaner[C15].txt - [3971 octets] - [16/06/2023 01:00:47]
AdwCleaner[S16].txt - [3588 octets] - [23/06/2023 01:00:36]
AdwCleaner[C16].txt - [3989 octets] - [23/06/2023 01:01:00]
AdwCleaner[S17].txt - [3710 octets] - [29/06/2023 21:57:20]
AdwCleaner[C17].txt - [4111 octets] - [29/06/2023 21:57:45]
AdwCleaner[S18].txt - [3923 octets] - [09/07/2023 00:48:00]
AdwCleaner[C18].txt - [4337 octets] - [09/07/2023 00:48:20]
AdwCleaner[S19].txt - [4045 octets] - [17/07/2023 16:30:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C19].txt ##########
Re: Preventivní kontrola
ještě posílám log z RFST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-07-2023
Ran by User (administrator) on LAPTOP-2PIQM58C (LENOVO 81HN) (17-07-2023 16:36:15)
Running from C:\Users\User\Downloads\FRST-OlderVersion\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\Kamo\Kamo.exe ->) (PIRIFORM SOFTWARE LIMITED -> The CefSharp Authors) C:\Program Files (x86)\Kamo\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxEM.exe
(explorer.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo(beijing) Limited) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7177cf092021a5b2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files (x86)\Kamo\KamoSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.132.0625.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3205_none_7e1f4da67c811930\TiWorker.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform) C:\Program Files (x86)\Kamo\Kamo.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [479632 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123262376 2023-02-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\MountPoints2: {adbf6710-664a-11ec-9cce-d8f2caf9fae1} - "E:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\Installer\chrmstp.exe [2023-07-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B401E9E-9862-4F88-9B32-EE839E7CC3F2} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
Task: {3C7D084A-669E-4785-9426-F695B1F4E056} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon)
Task: {4D575BD2-E416-450A-A0AC-247C6AC13A16} - System32\Tasks\CCleanerUpdateTaskMachineUA
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - \Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 -> No File <==== ATTENTION
Task: {B66DFA01-E411-45A5-9D46-5CD32D9BE368} - System32\Tasks\CCleanerUpdateTaskMachineCore
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - \Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 -> No File <==== ATTENTION
Task: {EC1EC4FC-BFBC-4916-B01F-7B6609434D19} - System32\Tasks\User_Feed_Synchronization-{A46FC3AA-3A8C-40E6-A5DC-1C476F158411}
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - \Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 -> No File <==== ATTENTION
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {1AC32DB5-03B9-47D4-AF40-C2B9A859BD40} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
Task: {1F1CC6E8-F38A-47AC-9BC2-B487B5A35E5D} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1243544 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
Task: {B24A9672-C963-4076-9EA0-6A475EB8F52A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5030808 2023-05-05] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {68A4877B-542D-44CE-97AC-6DFEA214748B} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-04-26] (Avast Software s.r.o. -> Avast Software)
Task: {FAB41062-B159-4873-8947-142B99EEFB08} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {E7D6577A-94B8-4060-B1CA-023DEBD7C1AD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {79EA82B4-3ABC-4E57-AE78-092A45965E29} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "32a29b2a-66d6-4d31-9035-9ab2caba1be2" --version "6.13.10517" --silent
Task: {15BE7814-7EB0-4507-8BAD-A095F18A2DF5} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FE36CE57-D1BA-4928-9911-87200C04BAA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {99AC8241-9937-4E5E-8050-745E4A914CC3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {AF5AF5DB-ABED-4166-8E4D-B0C478B87B44} - System32\Tasks\Kamo\KamoStart => C:\Program Files (x86)\Kamo\Kamo.exe [911776 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform)
Task: {977DE12D-4A31-4949-B158-71C8401038F4} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {2ECABAE8-0F4D-4CEA-BAD5-8CBCC349AC02} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {31FE7241-34B0-492C-BFAC-5965FB2161ED} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {D3310A7B-2DBF-42F9-9C16-2AD729AC2470} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {377D3266-BCDB-45B2-9817-7EC9994BF7D9} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0F2AD50E-1AC2-4CC0-B148-843978649D3E} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {3594254E-AF7A-418E-8CAC-FEBC1AE87D9E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {E9A05FB2-32C4-48EC-AFF3-DDC9F166CE5A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {C8E67FE6-C28A-4CA4-9550-E294C9FCAA51} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {02ABA556-A8B3-4375-B4A6-9A9C379FE597} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {553C01BB-FAE4-4356-ADC6-3F8B113FDD3C} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0EB3F159-42D7-42DC-A2D5-FA59F3607C23} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5308592 2023-07-12] (Microsoft Windows -> Microsoft Corporation)
Task: {1C6E1B52-DB32-48B0-9C0A-08F1E9C5B511} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-07-12] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {73BA8F20-AEB9-41D3-A524-3D9997018061} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-07-12] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0efff675-9353-4fb1-b4aa-849d754b5392}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-17]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF DefaultProfile: em4ureuj.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default [2023-07-17]
FF Homepage: Mozilla\Firefox\Profiles\em4ureuj.default -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default\searchplugins\yandex.ru-20231113.xml [2023-03-13]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\w0bpcnq4.default-release [2023-07-17]
FF Homepage: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.seznam.cz
FF Notifications: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.youtube.com; hxxps://www.jenzeny.cz; hxxps://www.mesec.cz; hxxps://wareznet.catsboard.com
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-07-17]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://yandex.ru/search/?__PARAM__from=chromesearch&text={searchTerms}
CHR DefaultSearchKeyword: Default -> yandex.ru
CHR DefaultSuggestURL: Default -> hxxps://suggest.yandex.net/suggest-ff.cgi?uil=ru&part={searchTerms}
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-19]
CHR Extension: (Яндекс) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibknafobnmndicojahlppolcaaibngjf [2023-06-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-08]
CHR HKU\S-1-5-21-340613129-453698752-3828940104-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
Opera:
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2023-07-17]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-28]
Yandex:
=======
YAN Profile: C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Default [2023-07-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\elevation_service.exe [2034736 2023-06-27] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4958096 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602544 2018-10-02] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 KamoSvc; C:\Program Files (x86)\Kamo\KamoSvc.exe [6709664 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe [32960 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10043288 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31368 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237424 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272016 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556576 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [704264 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76664 2023-05-05] (Avast Software s.r.o. -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [114104 2022-12-14] (Piriform Software Ltd -> Windows (R) Win 7 DDK provider)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [163644 2022-04-16] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-17 16:35 - 2023-07-17 16:36 - 000000000 ____D C:\Users\User\Downloads\FRST-OlderVersion
2023-07-15 21:09 - 2023-07-15 21:10 - 000035126 _____ C:\Users\User\Downloads\Addition.txt
2023-07-15 21:07 - 2023-07-15 21:10 - 000038278 _____ C:\Users\User\Downloads\FRST.txt
2023-07-15 21:06 - 2023-07-17 16:36 - 000000000 ____D C:\FRST
2023-07-15 21:00 - 2023-07-15 21:00 - 000000000 ____D C:\Users\User\OneDrive\Documents\Square Enix
2023-07-15 20:58 - 2023-07-15 20:58 - 000000000 ____D C:\ProgramData\Steam
2023-07-15 20:27 - 2023-07-15 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
2023-07-15 20:18 - 2023-07-15 20:18 - 000000000 ____D C:\Program Files (x86)\Square Enix
2023-07-15 20:15 - 2023-07-15 20:15 - 000000000 ____D C:\Program Files (x86)\Just Cause 2
2023-07-15 16:39 - 2023-07-16 21:01 - 000000000 ____D C:\Users\User\Downloads\Just Cause 2 CZ Complete
2023-07-12 17:38 - 2023-07-12 17:38 - 000000000 ___HD C:\$WinREAgent
2023-07-11 18:12 - 2023-07-11 18:12 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-11 16:17 - 2023-07-11 16:17 - 000042618 _____ C:\Users\User\Downloads\Zpátky do školy.odt
2023-07-11 16:17 - 2023-07-11 16:17 - 000036367 _____ C:\Users\User\Downloads\Seznámení s Tupounem.odt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-17 16:37 - 2021-08-03 01:52 - 000000000 ____D C:\Users\User\AppData\Local\Lenovo
2023-07-17 16:36 - 2022-02-12 11:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-17 16:33 - 2021-12-17 17:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-17 16:33 - 2021-09-08 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-17 16:32 - 2022-12-14 18:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Kamo
2023-07-17 16:32 - 2021-08-20 20:17 - 000000000 ____D C:\Program Files\CCleaner
2023-07-17 16:32 - 2021-08-03 01:36 - 000000000 ___RD C:\Users\User\OneDrive
2023-07-17 16:31 - 2022-12-14 18:40 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-07-17 16:31 - 2022-12-14 18:40 - 000000000 ____D C:\Users\User\AppData\Local\Kamo
2023-07-17 16:31 - 2022-09-21 12:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-17 16:31 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-07-17 16:31 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-17 16:31 - 2021-08-20 19:51 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-17 16:31 - 2021-08-04 11:28 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2023-07-17 16:31 - 2021-08-03 03:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-17 16:31 - 2021-08-03 02:56 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-17 16:31 - 2021-08-03 01:34 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2023-07-17 16:31 - 2021-08-03 01:14 - 000000000 ___HD C:\Intel
2023-07-17 16:31 - 2021-08-03 01:00 - 000000000 ____D C:\ProgramData\Lenovo
2023-07-17 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-17 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-17 16:31 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-07-17 16:28 - 2021-08-20 20:36 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2023-07-17 13:17 - 2021-08-03 02:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-17 13:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-17 12:48 - 2022-09-21 12:31 - 000003044 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-17 12:48 - 2021-12-11 17:09 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-17 12:48 - 2021-09-08 22:33 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-07-17 12:48 - 2021-09-08 22:33 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-07-17 12:48 - 2021-08-20 20:17 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-17 12:48 - 2021-08-20 20:17 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2023-07-17 12:48 - 2021-08-03 04:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-17 12:48 - 2021-08-03 04:23 - 000003374 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d78802f0d9ef06
2023-07-17 12:48 - 2021-08-03 03:00 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-17 12:28 - 2021-08-20 19:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-07-17 11:15 - 2022-10-30 06:43 - 000000000 ____D C:\Users\User\OneDrive\Documents\FIFA 14
2023-07-16 18:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-15 20:30 - 2022-10-30 06:32 - 000000000 ____D C:\hry
2023-07-15 20:29 - 2021-12-28 17:23 - 000000000 ____D C:\Users\User\AppData\Local\JDownloader 2.0
2023-07-15 13:41 - 2021-08-03 02:56 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-15 13:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-13 16:34 - 2021-09-08 22:35 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-07-13 13:10 - 2021-08-20 19:55 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-07-13 00:14 - 2023-04-13 15:35 - 000002381 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-12 23:50 - 2021-08-20 20:35 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-07-12 19:48 - 2021-08-03 03:02 - 001693864 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-12 19:48 - 2019-12-07 16:43 - 000719668 _____ C:\WINDOWS\system32\perfh005.dat
2023-07-12 19:48 - 2019-12-07 16:43 - 000145794 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-12 19:48 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-12 18:11 - 2021-08-03 02:56 - 000296848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-12 18:09 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-12 17:46 - 2021-08-03 03:00 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-12 17:37 - 2021-08-03 03:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 17:34 - 2021-08-03 03:22 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 09:42 - 2021-08-03 03:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-07-11 18:12 - 2021-08-20 19:52 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000704264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000556576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000392832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000272016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000237424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000031368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-11 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-03 16:07 - 2022-10-29 15:33 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-07-03 16:07 - 2022-10-29 15:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-07-01 20:40 - 2023-03-10 09:59 - 000000000 ____D C:\Users\User\OneDrive\Documents\Euro Truck Simulator 2
2023-06-29 03:19 - 2021-09-08 22:33 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-23 01:01 - 2021-12-26 19:05 - 000000000 ____D C:\Program Files\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
_____________________________________________________________________________________________________________________________________________________________________
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-07-2023
Ran by User (17-07-2023 16:38:39)
Running from C:\Users\User\Downloads\FRST-OlderVersion
Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) (2021-08-03 01:01:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-340613129-453698752-3828940104-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-340613129-453698752-3828940104-503 - Limited - Disabled)
Guest (S-1-5-21-340613129-453698752-3828940104-501 - Limited - Disabled)
User (S-1-5-21-340613129-453698752-3828940104-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-340613129-453698752-3828940104-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 114.0.21608.201 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.0.0.1932 - Disc Soft Ltd)
Euro Truck Simulator 2 - ElAmigos verze 1.40.5.0 (HKLM-x32\...\{9384C835-3AAB-4AEB-A190-765E3FB774E1}_is1) (Version: 1.40.5.0 - SCS Software)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1135 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{93088816-1328-4885-B7E9-7F7FBEE06A16}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{9CD3FE14-6FAD-4F91-B767-E672A9C4DED9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{911932DA-17C1-46CD-AE82-5A4BEBCC5886}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Just Cause 2 (HKLM-x32\...\Just Cause 2_is1) (Version: - )
Kamo (HKLM-x32\...\Kamo) (Version: 4.8.1258.1658 - Piriform)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.55.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.82 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.82 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\OneDriveSetup.exe) (Version: 23.132.0625.0001 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{750E1D74-BE38-4ADA-9EAC-EE378059A8E0}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{071D1D08-11BA-44FF-9A91-861EF3434FB9}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Zoo Tycoon (HKLM-x32\...\Zoo Tycoon 1.0) (Version: - )
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 115.0.2 (x64 cs)) (Version: 115.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.0.1 - Mozilla)
OpenOffice 4.1.13 (HKLM-x32\...\{D86F0E67-2C02-4DFF-A46A-6871BA809A51}) (Version: 4.113.9810 - Apache Software Foundation)
OpenOffice 4.1.13 Language Pack (Czech) (HKLM-x32\...\{84CF4426-EF31-44D8-BD1B-6FDDFEDD586A}) (Version: 4.113.9810 - Apache Software Foundation)
Skype verze 8.94 (HKLM-x32\...\Skype_is1) (Version: 8.94 - Skype Technologies S.A.)
WhatsApp (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\WhatsApp) (Version: 2.2306.9 - WhatsApp)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Yandex (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\YandexBrowser) (Version: 23.1.4.782 - ООО «ЯНДЕКС»)
Zoom (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\ZoomUMX) (Version: 5.13.7 (12602) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Photoshop Express -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.11.425.0_x64__ynb6jyjzte8ga [2023-04-28] (Adobe Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.3011.0_x64__rz1tebttyb220 [2023-06-15] (Dolby Laboratories)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.249.0_x64__rz1tebttyb220 [2023-07-15] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-26] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-08] (Microsoft Corporation)
DSLR Camera Photo Effects -> C:\Program Files\WindowsApps\35450PhotoCoolApps.DSLRCameraPhotoEffects_2.0.0.0_x64__61cxy7b35vdsg [2022-03-21] (Photo Cool Apps)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.59.5902.0_x86__ytsefhwckbdv6 [2023-07-01] (G5 Entertainment AB)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-08-03] (INTEL CORP)
Jewels of Rome: Match gems to restore the city -> C:\Program Files\WindowsApps\828B5831.JewelsofRomeMatchgemstorestorethecity_1.49.4901.0_x64__ytsefhwckbdv6 [2023-07-04] (G5 Entertainment AB)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8 [2023-06-12] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4 [2023-06-07] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.4.0_x64__w1wdnht996qgy [2023-06-25] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-01] (INTEL CORP) [Startup Task]
PIP Camera - Creative Photo Frames & Photo Editor -> C:\Program Files\WindowsApps\35450PhotoCoolApps.PIPCamera-CreativePhotoFramesPh_2.0.3.0_x64__61cxy7b35vdsg [2022-07-08] (Photo Cool Apps)
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.12518.0_x86__m916jedk64snt [2021-08-04] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.4112.0_x86__m916jedk64snt [2021-12-29] (CYBERLINKCOM CORPORATION)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.582.400.0_x86__55nm5eh3cm0pr [2023-07-09] (ROBLOX Corporation)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-27] (Microsoft Corporation)
SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.53.0_x86__qt57b6kdvhcfw [2021-08-04] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-22] (Microsoft Studios) [MS Ad]
Solitaire Cruise Tripeaks Card Game -> C:\Program Files\WindowsApps\SamfinacoLimited.SolitaireCruiseTripeaksCardGame_4.5.27.0_x64__aj0b1qrpyg0w6 [2023-06-15] (Samfinaco Limited)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0 [2023-07-10] (Spotify AB) [Startup Task]
Survivors: the Quest -> C:\Program Files\WindowsApps\828B5831.SurvivorstheQuest_1.14.1104.0_x86__ytsefhwckbdv6 [2023-05-27] (G5 Entertainment AB)
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2022-03-21] (Bytedance Pte. Ltd.)
UnRar Metro -> C:\Program Files\WindowsApps\1253QUANTUMVM.UNRARMETRO_56.1.0.0_x64__ckbnxvahp5f44 [2022-12-30] (QuantumVM)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> DefaultScope 66638e92-c187-11ed-8610-482ae373fa6f URL =
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> {3FA1801B-B193-46D2-A6BF-57330148E3AA} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2023-06-28 11:27 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{768AAF8D-A23F-404A-9C0A-EF323361071C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF3F56A8-70A1-444A-9B65-B2BB3D596D9F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E0B55DDC-07A7-4EA0-BBA1-56F584CCC1D1}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DA0904CC-DBF9-40A7-9658-A64DC7C1A30D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0B76D09-37FA-4CA6-8D8C-B4B2FE6084A6}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{622D2830-AE7E-48B6-93A7-6A8AE5C7F46F}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8D7C29C1-453D-4A8E-820A-F99856425461}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{536AAF44-5624-40AB-AB35-6D99DBF64F5B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{80716350-97CE-45AA-986A-B50A1887D843}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA065CE3-4D8F-4016-8226-00C85254A1B5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A361C9A-3C47-4899-814F-896318A0EE03}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{8B286FD1-2460-4A3D-B4AA-024052BD0D13}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{C7C84BA1-F14C-4219-99AC-03DEA4D2544F}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3E26B455-B256-4033-8DE7-5C67A550302C}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{45450060-2E0F-44E1-932C-2F050599C745}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A09913CD-D8E4-4E4B-BD49-623FCAE1AFA6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{685E25B7-A34E-4FCA-A597-ABBCCB865CAA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{369B8188-B355-4DAF-A9ED-7DACDC8388F9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B0EFFDFD-6571-419D-9BED-6C1AF92657E5}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FirewallRules: [{C5817133-A5D6-4692-8512-6B6DDCC67B1D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77611467-0EF8-4695-8287-D0C46FDFF19F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B9488B1-9541-412C-93AB-87664669C499}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{238B1DFC-60D2-4338-A29B-4C525F10BE6A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B7D21F46-4A21-4913-AD96-A3D228643567}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{696285C6-57CF-40DC-952A-932CA1C48739}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D2E3137-741C-40D2-9805-1923FE8876A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6723ECA8-E07F-4A93-8D08-A53A563A13A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B261FED5-84B2-41D0-A017-F1C7A4E8BF15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23990219-D76D-4A3C-811B-BECF010E580F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{549E2943-46E3-4E18-8E96-AC7DE8F42000}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463158F3-82E2-4D1E-B908-6057F5EBF1E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A2ADFF5-1A37-43A8-8A63-BC33C4D2399A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3A0457CE-EEC0-4B8C-8302-F2B8C212ECB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{22A990B1-77D3-4EC8-B097-2F9FAB6E7E2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7A587EA8-F3B8-44D8-8AB7-5C319063985A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.82\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
17-07-2023 16:30:19 AdwCleaner_BeforeCleaning_17/07/2023_16:30:18
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/16/2023 10:09:06 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/16/2023 08:11:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x63e0
Čas spuštění chybující aplikace: 0x01d9b810e78d1732
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 2b211031-1340-4df4-9b2d-93345e7663bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/16/2023 04:11:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x56f4
Čas spuštění chybující aplikace: 0x01d9b7ef73139506
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 5f28d209-6e0f-47cd-bd4f-8b28208826e7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 10:09:10 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/15/2023 09:33:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x5ef0
Čas spuštění chybující aplikace: 0x01d9b75349c8e32c
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 462d9521-0b0c-4685-8815-80d730d03537
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:33:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x49d8
Čas spuštění chybující aplikace: 0x01d9b7533a829679
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 0177ef66-f296-48da-bad1-be43eef60c55
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:32:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x21ec
Čas spuštění chybující aplikace: 0x01d9b75324892a38
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 0b887c0c-0bd2-4b78-bff3-33b07943f1cf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x730
Čas spuštění chybující aplikace: 0x01d9b752f253bcb6
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 63aea58a-e583-4e81-b4f6-f02889329b89
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (07/17/2023 04:37:19 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/17/2023 04:31:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (07/17/2023 04:31:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\SECDRV.SYS
Error: (07/17/2023 04:31:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba LMS neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (07/17/2023 04:31:20 PM) (Source: Netwtw04) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 3165 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (07/17/2023 04:30:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/17/2023 04:30:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/17/2023 04:30:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
CodeIntegrity:
===============
Date: 2023-07-17 16:32:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2023-07-17 16:31:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 8VCN29WW 05/17/2021
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 62%
Total physical RAM: 7613.43 MB
Available physical RAM: 2890.64 MB
Total Virtual: 9149.43 MB
Available Virtual: 4059.91 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:237.23 GB) (Free:16.69 GB) (Model: WDC PC SN520 SDAPMUW-256G-1101) NTFS
\\?\Volume{24033886-4660-4d56-b592-09873c79ced0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{fa85c194-b754-44ca-a842-8136a7efa10a}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 30CA1954)
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-07-2023
Ran by User (administrator) on LAPTOP-2PIQM58C (LENOVO 81HN) (17-07-2023 16:36:15)
Running from C:\Users\User\Downloads\FRST-OlderVersion\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\Kamo\Kamo.exe ->) (PIRIFORM SOFTWARE LIMITED -> The CefSharp Authors) C:\Program Files (x86)\Kamo\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxEM.exe
(explorer.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo(beijing) Limited) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7177cf092021a5b2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eab4a3cc9d877ce2\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files (x86)\Kamo\KamoSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.132.0625.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3205_none_7e1f4da67c811930\TiWorker.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform) C:\Program Files (x86)\Kamo\Kamo.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [479632 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123262376 2023-02-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\MountPoints2: {adbf6710-664a-11ec-9cce-d8f2caf9fae1} - "E:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\Installer\chrmstp.exe [2023-07-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B401E9E-9862-4F88-9B32-EE839E7CC3F2} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
Task: {3C7D084A-669E-4785-9426-F695B1F4E056} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon)
Task: {4D575BD2-E416-450A-A0AC-247C6AC13A16} - System32\Tasks\CCleanerUpdateTaskMachineUA
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - \Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 -> No File <==== ATTENTION
Task: {B66DFA01-E411-45A5-9D46-5CD32D9BE368} - System32\Tasks\CCleanerUpdateTaskMachineCore
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - \Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 -> No File <==== ATTENTION
Task: {EC1EC4FC-BFBC-4916-B01F-7B6609434D19} - System32\Tasks\User_Feed_Synchronization-{A46FC3AA-3A8C-40E6-A5DC-1C476F158411}
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - \Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 -> No File <==== ATTENTION
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {1AC32DB5-03B9-47D4-AF40-C2B9A859BD40} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
Task: {1F1CC6E8-F38A-47AC-9BC2-B487B5A35E5D} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1243544 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
Task: {B24A9672-C963-4076-9EA0-6A475EB8F52A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5030808 2023-05-05] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {68A4877B-542D-44CE-97AC-6DFEA214748B} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-04-26] (Avast Software s.r.o. -> Avast Software)
Task: {FAB41062-B159-4873-8947-142B99EEFB08} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-13] (Avast Software s.r.o. -> Avast Software)
Task: {E7D6577A-94B8-4060-B1CA-023DEBD7C1AD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {79EA82B4-3ABC-4E57-AE78-092A45965E29} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "32a29b2a-66d6-4d31-9035-9ab2caba1be2" --version "6.13.10517" --silent
Task: {15BE7814-7EB0-4507-8BAD-A095F18A2DF5} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FE36CE57-D1BA-4928-9911-87200C04BAA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {99AC8241-9937-4E5E-8050-745E4A914CC3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-09-08] (Google Inc -> Google LLC)
Task: {AF5AF5DB-ABED-4166-8E4D-B0C478B87B44} - System32\Tasks\Kamo\KamoStart => C:\Program Files (x86)\Kamo\Kamo.exe [911776 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform)
Task: {977DE12D-4A31-4949-B158-71C8401038F4} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {2ECABAE8-0F4D-4CEA-BAD5-8CBCC349AC02} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {31FE7241-34B0-492C-BFAC-5965FB2161ED} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {D3310A7B-2DBF-42F9-9C16-2AD729AC2470} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {377D3266-BCDB-45B2-9817-7EC9994BF7D9} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0F2AD50E-1AC2-4CC0-B148-843978649D3E} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {3594254E-AF7A-418E-8CAC-FEBC1AE87D9E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {E9A05FB2-32C4-48EC-AFF3-DDC9F166CE5A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {C8E67FE6-C28A-4CA4-9550-E294C9FCAA51} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {02ABA556-A8B3-4375-B4A6-9A9C379FE597} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {553C01BB-FAE4-4356-ADC6-3F8B113FDD3C} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\ScheduleEventAction.exe [28912 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
Task: {0EB3F159-42D7-42DC-A2D5-FA59F3607C23} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5308592 2023-07-12] (Microsoft Windows -> Microsoft Corporation)
Task: {1C6E1B52-DB32-48B0-9C0A-08F1E9C5B511} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-07-12] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {73BA8F20-AEB9-41D3-A524-3D9997018061} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-07-12] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0efff675-9353-4fb1-b4aa-849d754b5392}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-17]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-24]
FireFox:
========
FF DefaultProfile: em4ureuj.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default [2023-07-17]
FF Homepage: Mozilla\Firefox\Profiles\em4ureuj.default -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\em4ureuj.default\searchplugins\yandex.ru-20231113.xml [2023-03-13]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\w0bpcnq4.default-release [2023-07-17]
FF Homepage: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.seznam.cz
FF Notifications: Mozilla\Firefox\Profiles\w0bpcnq4.default-release -> hxxps://www.youtube.com; hxxps://www.jenzeny.cz; hxxps://www.mesec.cz; hxxps://wareznet.catsboard.com
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-07-17]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://yandex.ru/search/?__PARAM__from=chromesearch&text={searchTerms}
CHR DefaultSearchKeyword: Default -> yandex.ru
CHR DefaultSuggestURL: Default -> hxxps://suggest.yandex.net/suggest-ff.cgi?uil=ru&part={searchTerms}
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-19]
CHR Extension: (Яндекс) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibknafobnmndicojahlppolcaaibngjf [2023-06-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-08]
CHR HKU\S-1-5-21-340613129-453698752-3828940104-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
Opera:
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2023-07-17]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-28]
Yandex:
=======
YAN Profile: C:\Users\User\AppData\Local\Yandex\YandexBrowser\User Data\Default [2023-07-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\114.0.21608.201\elevation_service.exe [2034736 2023-06-27] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4958096 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602544 2018-10-02] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 KamoSvc; C:\Program Files (x86)\Kamo\KamoSvc.exe [6709664 2023-02-28] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.55.0\LenovoVantageService.exe [32960 2023-03-29] (Lenovo -> Lenovo Group Ltd.)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10043288 2023-05-05] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31368 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237424 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272016 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556576 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [704264 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76664 2023-05-05] (Avast Software s.r.o. -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [114104 2022-12-14] (Piriform Software Ltd -> Windows (R) Win 7 DDK provider)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [163644 2022-04-16] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-17 16:35 - 2023-07-17 16:36 - 000000000 ____D C:\Users\User\Downloads\FRST-OlderVersion
2023-07-15 21:09 - 2023-07-15 21:10 - 000035126 _____ C:\Users\User\Downloads\Addition.txt
2023-07-15 21:07 - 2023-07-15 21:10 - 000038278 _____ C:\Users\User\Downloads\FRST.txt
2023-07-15 21:06 - 2023-07-17 16:36 - 000000000 ____D C:\FRST
2023-07-15 21:00 - 2023-07-15 21:00 - 000000000 ____D C:\Users\User\OneDrive\Documents\Square Enix
2023-07-15 20:58 - 2023-07-15 20:58 - 000000000 ____D C:\ProgramData\Steam
2023-07-15 20:27 - 2023-07-15 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
2023-07-15 20:18 - 2023-07-15 20:18 - 000000000 ____D C:\Program Files (x86)\Square Enix
2023-07-15 20:15 - 2023-07-15 20:15 - 000000000 ____D C:\Program Files (x86)\Just Cause 2
2023-07-15 16:39 - 2023-07-16 21:01 - 000000000 ____D C:\Users\User\Downloads\Just Cause 2 CZ Complete
2023-07-12 17:38 - 2023-07-12 17:38 - 000000000 ___HD C:\$WinREAgent
2023-07-11 18:12 - 2023-07-11 18:12 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-11 16:17 - 2023-07-11 16:17 - 000042618 _____ C:\Users\User\Downloads\Zpátky do školy.odt
2023-07-11 16:17 - 2023-07-11 16:17 - 000036367 _____ C:\Users\User\Downloads\Seznámení s Tupounem.odt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-17 16:37 - 2021-08-03 01:52 - 000000000 ____D C:\Users\User\AppData\Local\Lenovo
2023-07-17 16:36 - 2022-02-12 11:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-17 16:33 - 2021-12-17 17:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-17 16:33 - 2021-09-08 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-17 16:32 - 2022-12-14 18:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Kamo
2023-07-17 16:32 - 2021-08-20 20:17 - 000000000 ____D C:\Program Files\CCleaner
2023-07-17 16:32 - 2021-08-03 01:36 - 000000000 ___RD C:\Users\User\OneDrive
2023-07-17 16:31 - 2022-12-14 18:40 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-07-17 16:31 - 2022-12-14 18:40 - 000000000 ____D C:\Users\User\AppData\Local\Kamo
2023-07-17 16:31 - 2022-09-21 12:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-17 16:31 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-07-17 16:31 - 2021-08-20 20:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-17 16:31 - 2021-08-20 19:51 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-17 16:31 - 2021-08-04 11:28 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2023-07-17 16:31 - 2021-08-03 03:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-17 16:31 - 2021-08-03 02:56 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-17 16:31 - 2021-08-03 01:34 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2023-07-17 16:31 - 2021-08-03 01:14 - 000000000 ___HD C:\Intel
2023-07-17 16:31 - 2021-08-03 01:00 - 000000000 ____D C:\ProgramData\Lenovo
2023-07-17 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-17 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-17 16:31 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-07-17 16:28 - 2021-08-20 20:36 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2023-07-17 13:17 - 2021-08-03 02:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-17 13:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-17 12:48 - 2022-09-21 12:31 - 000003044 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-17 12:48 - 2021-12-11 17:09 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-17 12:48 - 2021-09-08 22:33 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-07-17 12:48 - 2021-09-08 22:33 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-07-17 12:48 - 2021-08-20 20:17 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-17 12:48 - 2021-08-20 20:17 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2023-07-17 12:48 - 2021-08-03 04:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-17 12:48 - 2021-08-03 04:23 - 000003374 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d78802f0d9ef06
2023-07-17 12:48 - 2021-08-03 03:00 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-340613129-453698752-3828940104-1001
2023-07-17 12:28 - 2021-08-20 19:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-07-17 11:15 - 2022-10-30 06:43 - 000000000 ____D C:\Users\User\OneDrive\Documents\FIFA 14
2023-07-16 18:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-15 20:30 - 2022-10-30 06:32 - 000000000 ____D C:\hry
2023-07-15 20:29 - 2021-12-28 17:23 - 000000000 ____D C:\Users\User\AppData\Local\JDownloader 2.0
2023-07-15 13:41 - 2021-08-03 02:56 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-15 13:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-13 16:34 - 2021-09-08 22:35 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-07-13 13:10 - 2021-08-20 19:55 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-07-13 00:14 - 2023-04-13 15:35 - 000002381 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-12 23:50 - 2021-08-20 20:35 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-07-12 19:48 - 2021-08-03 03:02 - 001693864 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-12 19:48 - 2019-12-07 16:43 - 000719668 _____ C:\WINDOWS\system32\perfh005.dat
2023-07-12 19:48 - 2019-12-07 16:43 - 000145794 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-12 19:48 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-12 18:11 - 2021-08-03 02:56 - 000296848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-12 18:09 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-12 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-12 17:46 - 2021-08-03 03:00 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-12 17:37 - 2021-08-03 03:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 17:34 - 2021-08-03 03:22 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 09:42 - 2021-08-03 03:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-07-11 18:12 - 2021-08-20 19:52 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000704264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000556576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000392832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000272016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000237424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000031368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-07-11 18:12 - 2021-08-20 19:52 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-11 18:12 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-03 16:07 - 2022-10-29 15:33 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-07-03 16:07 - 2022-10-29 15:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-07-01 20:40 - 2023-03-10 09:59 - 000000000 ____D C:\Users\User\OneDrive\Documents\Euro Truck Simulator 2
2023-06-29 03:19 - 2021-09-08 22:33 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-23 01:01 - 2021-12-26 19:05 - 000000000 ____D C:\Program Files\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-23 00:57 - 2021-12-26 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
_____________________________________________________________________________________________________________________________________________________________________
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-07-2023
Ran by User (17-07-2023 16:38:39)
Running from C:\Users\User\Downloads\FRST-OlderVersion
Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) (2021-08-03 01:01:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-340613129-453698752-3828940104-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-340613129-453698752-3828940104-503 - Limited - Disabled)
Guest (S-1-5-21-340613129-453698752-3828940104-501 - Limited - Disabled)
User (S-1-5-21-340613129-453698752-3828940104-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-340613129-453698752-3828940104-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.6.6070 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 114.0.21608.201 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.0.0.1932 - Disc Soft Ltd)
Euro Truck Simulator 2 - ElAmigos verze 1.40.5.0 (HKLM-x32\...\{9384C835-3AAB-4AEB-A190-765E3FB774E1}_is1) (Version: 1.40.5.0 - SCS Software)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1135 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{93088816-1328-4885-B7E9-7F7FBEE06A16}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{9CD3FE14-6FAD-4F91-B767-E672A9C4DED9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{911932DA-17C1-46CD-AE82-5A4BEBCC5886}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Just Cause 2 (HKLM-x32\...\Just Cause 2_is1) (Version: - )
Kamo (HKLM-x32\...\Kamo) (Version: 4.8.1258.1658 - Piriform)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.55.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.82 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.82 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\OneDriveSetup.exe) (Version: 23.132.0625.0001 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{750E1D74-BE38-4ADA-9EAC-EE378059A8E0}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{071D1D08-11BA-44FF-9A91-861EF3434FB9}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Zoo Tycoon (HKLM-x32\...\Zoo Tycoon 1.0) (Version: - )
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 115.0.2 (x64 cs)) (Version: 115.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.0.1 - Mozilla)
OpenOffice 4.1.13 (HKLM-x32\...\{D86F0E67-2C02-4DFF-A46A-6871BA809A51}) (Version: 4.113.9810 - Apache Software Foundation)
OpenOffice 4.1.13 Language Pack (Czech) (HKLM-x32\...\{84CF4426-EF31-44D8-BD1B-6FDDFEDD586A}) (Version: 4.113.9810 - Apache Software Foundation)
Skype verze 8.94 (HKLM-x32\...\Skype_is1) (Version: 8.94 - Skype Technologies S.A.)
WhatsApp (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\WhatsApp) (Version: 2.2306.9 - WhatsApp)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Yandex (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\YandexBrowser) (Version: 23.1.4.782 - ООО «ЯНДЕКС»)
Zoom (HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\ZoomUMX) (Version: 5.13.7 (12602) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Photoshop Express -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.11.425.0_x64__ynb6jyjzte8ga [2023-04-28] (Adobe Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.3011.0_x64__rz1tebttyb220 [2023-06-15] (Dolby Laboratories)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.249.0_x64__rz1tebttyb220 [2023-07-15] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-26] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-08] (Microsoft Corporation)
DSLR Camera Photo Effects -> C:\Program Files\WindowsApps\35450PhotoCoolApps.DSLRCameraPhotoEffects_2.0.0.0_x64__61cxy7b35vdsg [2022-03-21] (Photo Cool Apps)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.59.5902.0_x86__ytsefhwckbdv6 [2023-07-01] (G5 Entertainment AB)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-08-03] (INTEL CORP)
Jewels of Rome: Match gems to restore the city -> C:\Program Files\WindowsApps\828B5831.JewelsofRomeMatchgemstorestorethecity_1.49.4901.0_x64__ytsefhwckbdv6 [2023-07-04] (G5 Entertainment AB)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8 [2023-06-12] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4 [2023-06-07] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.4.0_x64__w1wdnht996qgy [2023-06-25] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16529.20182.0_x86__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-01] (INTEL CORP) [Startup Task]
PIP Camera - Creative Photo Frames & Photo Editor -> C:\Program Files\WindowsApps\35450PhotoCoolApps.PIPCamera-CreativePhotoFramesPh_2.0.3.0_x64__61cxy7b35vdsg [2022-07-08] (Photo Cool Apps)
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.12518.0_x86__m916jedk64snt [2021-08-04] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.4112.0_x86__m916jedk64snt [2021-12-29] (CYBERLINKCOM CORPORATION)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.582.400.0_x86__55nm5eh3cm0pr [2023-07-09] (ROBLOX Corporation)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-27] (Microsoft Corporation)
SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.53.0_x86__qt57b6kdvhcfw [2021-08-04] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-22] (Microsoft Studios) [MS Ad]
Solitaire Cruise Tripeaks Card Game -> C:\Program Files\WindowsApps\SamfinacoLimited.SolitaireCruiseTripeaksCardGame_4.5.27.0_x64__aj0b1qrpyg0w6 [2023-06-15] (Samfinaco Limited)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0 [2023-07-10] (Spotify AB) [Startup Task]
Survivors: the Quest -> C:\Program Files\WindowsApps\828B5831.SurvivorstheQuest_1.14.1104.0_x86__ytsefhwckbdv6 [2023-05-27] (G5 Entertainment AB)
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2022-03-21] (Bytedance Pte. Ltd.)
UnRar Metro -> C:\Program Files\WindowsApps\1253QUANTUMVM.UNRARMETRO_56.1.0.0_x64__ckbnxvahp5f44 [2022-12-30] (QuantumVM)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-12-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> DefaultScope 66638e92-c187-11ed-8610-482ae373fa6f URL =
SearchScopes: HKU\S-1-5-21-340613129-453698752-3828940104-1001 -> {3FA1801B-B193-46D2-A6BF-57330148E3AA} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2023-06-28 11:27 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-340613129-453698752-3828940104-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{768AAF8D-A23F-404A-9C0A-EF323361071C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF3F56A8-70A1-444A-9B65-B2BB3D596D9F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E0B55DDC-07A7-4EA0-BBA1-56F584CCC1D1}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DA0904CC-DBF9-40A7-9658-A64DC7C1A30D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0B76D09-37FA-4CA6-8D8C-B4B2FE6084A6}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{622D2830-AE7E-48B6-93A7-6A8AE5C7F46F}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8D7C29C1-453D-4A8E-820A-F99856425461}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{536AAF44-5624-40AB-AB35-6D99DBF64F5B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{80716350-97CE-45AA-986A-B50A1887D843}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA065CE3-4D8F-4016-8226-00C85254A1B5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A361C9A-3C47-4899-814F-896318A0EE03}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{8B286FD1-2460-4A3D-B4AA-024052BD0D13}] => (Allow) C:\hry\FIFA 14\Game\fifa14.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{C7C84BA1-F14C-4219-99AC-03DEA4D2544F}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3E26B455-B256-4033-8DE7-5C67A550302C}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{45450060-2E0F-44E1-932C-2F050599C745}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A09913CD-D8E4-4E4B-BD49-623FCAE1AFA6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{685E25B7-A34E-4FCA-A597-ABBCCB865CAA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{369B8188-B355-4DAF-A9ED-7DACDC8388F9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B0EFFDFD-6571-419D-9BED-6C1AF92657E5}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FirewallRules: [{C5817133-A5D6-4692-8512-6B6DDCC67B1D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77611467-0EF8-4695-8287-D0C46FDFF19F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B9488B1-9541-412C-93AB-87664669C499}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{238B1DFC-60D2-4338-A29B-4C525F10BE6A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B7D21F46-4A21-4913-AD96-A3D228643567}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{696285C6-57CF-40DC-952A-932CA1C48739}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D2E3137-741C-40D2-9805-1923FE8876A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6723ECA8-E07F-4A93-8D08-A53A563A13A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B261FED5-84B2-41D0-A017-F1C7A4E8BF15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23990219-D76D-4A3C-811B-BECF010E580F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{549E2943-46E3-4E18-8E96-AC7DE8F42000}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463158F3-82E2-4D1E-B908-6057F5EBF1E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A2ADFF5-1A37-43A8-8A63-BC33C4D2399A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3A0457CE-EEC0-4B8C-8302-F2B8C212ECB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.215.828.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{22A990B1-77D3-4EC8-B097-2F9FAB6E7E2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16529.20182.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7A587EA8-F3B8-44D8-8AB7-5C319063985A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.82\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
17-07-2023 16:30:19 AdwCleaner_BeforeCleaning_17/07/2023_16:30:18
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/16/2023 10:09:06 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/16/2023 08:11:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x63e0
Čas spuštění chybující aplikace: 0x01d9b810e78d1732
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 2b211031-1340-4df4-9b2d-93345e7663bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/16/2023 04:11:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x56f4
Čas spuštění chybující aplikace: 0x01d9b7ef73139506
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 5f28d209-6e0f-47cd-bd4f-8b28208826e7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 10:09:10 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/15/2023 09:33:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x5ef0
Čas spuštění chybující aplikace: 0x01d9b75349c8e32c
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 462d9521-0b0c-4685-8815-80d730d03537
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:33:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x49d8
Čas spuštění chybující aplikace: 0x01d9b7533a829679
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 0177ef66-f296-48da-bad1-be43eef60c55
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:32:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x21ec
Čas spuštění chybující aplikace: 0x01d9b75324892a38
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 0b887c0c-0bd2-4b78-bff3-33b07943f1cf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (07/15/2023 09:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JustCause2.exe, verze: 1.0.0.2, časové razítko: 0x4c1b5791
Název chybujícího modulu: MSVCR80.dll, verze: 8.0.50727.9672, časové razítko: 0x5db2b1b8
Kód výjimky: 0xc000000d
Posun chyby: 0x00046960
ID chybujícího procesu: 0x730
Čas spuštění chybující aplikace: 0x01d9b752f253bcb6
Cesta k chybující aplikaci: C:\Program Files (x86)\Square Enix\Just Cause 2\JustCause2.exe
Cesta k chybujícímu modulu: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll
ID zprávy: 63aea58a-e583-4e81-b4f6-f02889329b89
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (07/17/2023 04:37:19 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-2PIQM58C)
Description: Server {20532D01-15BE-4BB9-A727-CA34555D881C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/17/2023 04:31:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (07/17/2023 04:31:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\SECDRV.SYS
Error: (07/17/2023 04:31:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba LMS neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (07/17/2023 04:31:20 PM) (Source: Netwtw04) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 3165 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (07/17/2023 04:30:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/17/2023 04:30:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (07/17/2023 04:30:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
CodeIntegrity:
===============
Date: 2023-07-17 16:32:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2023-07-17 16:31:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 8VCN29WW 05/17/2021
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 62%
Total physical RAM: 7613.43 MB
Available physical RAM: 2890.64 MB
Total Virtual: 9149.43 MB
Available Virtual: 4059.91 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:237.23 GB) (Free:16.69 GB) (Model: WDC PC SN520 SDAPMUW-256G-1101) NTFS
\\?\Volume{24033886-4660-4d56-b592-09873c79ced0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{fa85c194-b754-44ca-a842-8136a7efa10a}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 30CA1954)
Re: Preventivní kontrola
docistenie - citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
CloseProcesses:
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\MountPoints2: {adbf6710-664a-11ec-9cce-d8f2caf9fae1} - "E:\setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - \Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 -> No File <==== ATTENTION
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - \Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 -> No File <==== ATTENTION
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - \Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 -> No File <==== ATTENTION
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Fix result of Farbar Recovery Scan Tool (x64) Version: 18-07-2023
Ran by User (18-07-2023 20:05:01) Run:1
Running from C:\Users\User\Downloads\FRST-OlderVersion\FRST-OlderVersion
Loaded Profiles: User
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\MountPoints2: {adbf6710-664a-11ec-9cce-d8f2caf9fae1} - "E:\setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - \Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 -> No File <==== ATTENTION
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - \Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 -> No File <==== ATTENTION
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - \Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 -> No File <==== ATTENTION
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-340613129-453698752-3828940104-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{adbf6710-664a-11ec-9cce-d8f2caf9fae1} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4F87285E-C416-47BA-8159-B1D4E455EFA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F87285E-C416-47BA-8159-B1D4E455EFA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B11901D-C0EA-4377-A662-9B214D9CF35F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B11901D-C0EA-4377-A662-9B214D9CF35F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F0D2071-13AD-4520-AB43-972B7ECAD2A3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F0D2071-13AD-4520-AB43-972B7ECAD2A3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4708244-DD58-4C53-AFDB-BADC3EA50512}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4708244-DD58-4C53-AFDB-BADC3EA50512}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F1C05F55-531C-4B6E-8CD1-FDE71E984A6E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1C05F55-531C-4B6E-8CD1-FDE71E984A6E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9751550-0043-4C28-9A4E-E76AF3C5AD54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9751550-0043-4C28-9A4E-E76AF3C5AD54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12740460 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 8656 B
Windows/system/drivers => 1859716489 B
Edge => 4096 B
Chrome => 188416 B
Yandex => 200704 B
Firefox => 911392824 B
Opera => 5081542 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 19864 B
NetworkService => 19864 B
User => 8934681 B
RecycleBin => 0 B
EmptyTemp: => 2.6 GB temporary data Removed.
================================
Ran by User (18-07-2023 20:05:01) Run:1
Running from C:\Users\User\Downloads\FRST-OlderVersion\FRST-OlderVersion
Loaded Profiles: User
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-340613129-453698752-3828940104-1001\...\MountPoints2: {adbf6710-664a-11ec-9cce-d8f2caf9fae1} - "E:\setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {4F87285E-C416-47BA-8159-B1D4E455EFA8} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {5B11901D-C0EA-4377-A662-9B214D9CF35F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5F0D2071-13AD-4520-AB43-972B7ECAD2A3} - \Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009 -> No File <==== ATTENTION
Task: {E4708244-DD58-4C53-AFDB-BADC3EA50512} - \Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47 -> No File <==== ATTENTION
Task: {F1C05F55-531C-4B6E-8CD1-FDE71E984A6E} - \Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775 -> No File <==== ATTENTION
Task: {F9751550-0043-4C28-9A4E-E76AF3C5AD54} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-340613129-453698752-3828940104-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{adbf6710-664a-11ec-9cce-d8f2caf9fae1} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4F87285E-C416-47BA-8159-B1D4E455EFA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F87285E-C416-47BA-8159-B1D4E455EFA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B11901D-C0EA-4377-A662-9B214D9CF35F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B11901D-C0EA-4377-A662-9B214D9CF35F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F0D2071-13AD-4520-AB43-972B7ECAD2A3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F0D2071-13AD-4520-AB43-972B7ECAD2A3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\c1231cad-4f1e-45af-a1c1-627e5619f009" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4708244-DD58-4C53-AFDB-BADC3EA50512}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4708244-DD58-4C53-AFDB-BADC3EA50512}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\aeab1851-e5df-4375-8af3-452635cd0f47" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F1C05F55-531C-4B6E-8CD1-FDE71E984A6E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1C05F55-531C-4B6E-8CD1-FDE71E984A6E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\decbaaff-aee7-4653-80d5-db23c13a2775" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9751550-0043-4C28-9A4E-E76AF3C5AD54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9751550-0043-4C28-9A4E-E76AF3C5AD54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12740460 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 8656 B
Windows/system/drivers => 1859716489 B
Edge => 4096 B
Chrome => 188416 B
Yandex => 200704 B
Firefox => 911392824 B
Opera => 5081542 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 19864 B
NetworkService => 19864 B
User => 8934681 B
RecycleBin => 0 B
EmptyTemp: => 2.6 GB temporary data Removed.
================================
Re: Preventivní kontrola
Malo by byt cisto 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Děkuji
Můžete
Můžete
Re: Preventivní kontrola
za malo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?