prosím o kontrolu logu pomalý PC
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by vlastimil (28-10-2023 09:13:08)
Running from C:\Users\vkubi_000\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2021-01-18 18:25:14)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2756002567-295290169-1842266776-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2756002567-295290169-1842266776-503 - Limited - Disabled)
Guest (S-1-5-21-2756002567-295290169-1842266776-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2756002567-295290169-1842266776-1003 - Limited - Enabled)
vlastimil (S-1-5-21-2756002567-295290169-1842266776-1001 - Administrator - Enabled) => C:\Users\vkubi_000
WDAGUtilityAccount (S-1-5-21-2756002567-295290169-1842266776-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.003.20322 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601042}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.9.6082 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.27.8746.9512 - Avast Software)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1634.4 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Expert Lotto 5 (HKLM\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Free Registry Defrag (HKLM-x32\...\Free Registry Defrag_is1) (Version: - iExpert Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.118 - Google LLC)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 341 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\OneDriveSetup.exe) (Version: 23.209.1008.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
MP3Studio YouTube Downloader (HKLM-x32\...\{2B96C253-7C3F-40AF-9B9C-C9F4E772C018}) (Version: 2.0.8.2 - MP3Studio/) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Version: 8.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Version: 8.5 - Apple Inc.)
TapinRadio 2.04.2 (x32) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 1.1.0.10 - )
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-07-05] (Microsoft Corporation)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10829.535.0_x64__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-21] (Microsoft Studios) [MS Ad]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.926.1327.882_neutral__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Office.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Vl (Osoba 2) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2023-10-20 08:07 - 2023-10-28 08:17 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2023-10-20 08:07 - 2023-10-28 08:17 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
2020-09-21 10:39 - 2020-09-07 08:55 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_341\bin\ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2021-01-27 09:14 - 2021-01-27 09:19 - 000000438 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\Control Panel\Desktop\\Wallpaper -> c:\users\vkubi_000\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg
HKU\S-1-5-21-2756002567-295290169-1842266776-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: avast => 2
MSCONFIG\Services: avast! Tools => 2
MSCONFIG\Services: avastm => 3
MSCONFIG\Services: AvastSecureBrowserElevationService => 3
MSCONFIG\Services: avg => 2
MSCONFIG\Services: AVG Tools => 2
MSCONFIG\Services: avgm => 3
MSCONFIG\Services: AVGSecureBrowserElevationService => 3
MSCONFIG\Services: CCleanerPerformanceOptimizerService => 3
MSCONFIG\Services: CleanupPSvc => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: igfxCUIService1.0.0.0 => 2
MSCONFIG\Services: ImControllerService => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SecureLine => 2
MSCONFIG\Services: valWBFPolicyService => 2
MSCONFIG\Services: valWbioSyncSvc => 2
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar803.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar989.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar755.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar672.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Url Monitor.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar309.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar733.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar389.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "AVGBrowserAutoLaunch_FB3C3B6CBC049AC46F71FFA1F90EEDA7"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MP3Studio YouTube Downloader"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar947.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar853.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{62D3F8D5-2F15-42BE-BA6D-76C0586E3988}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{02D8F56B-9A1A-4E38-8FBC-D1DA9777B1C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463D118F-985D-4F67-AB28-4E4A248075ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C831AB9-0B6C-41AA-9F56-16FAB9061F6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EAB757BB-1BA8-4844-90FB-E3C2F019900C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8FD077D8-38A9-4122-87FC-4FF33824AF58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4C100107-DDB1-4A7C-993D-4B94D91ABBB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EE609E94-93FB-4E2F-AEB5-F9F8C9E151A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D9CDE018-8524-487A-B0CB-B150299C16B0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{53414C1D-B38F-4403-8500-8DCE4320A3AF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{92C84504-9A7C-40C1-98B1-EB1F92C52502}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2C39BEC8-7F15-491B-BB2A-07E5159D3A5A}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C16BA713-7A0D-4793-8AAB-C0EF63ABCAA7}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{53BFD7F7-313A-4271-9F5B-38542B2D46BF}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C4B956B-CB2C-4E29-8568-8F3892BA3158}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DB7555DD-0B46-41A9-BFCA-AAD5FF6E039F}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{64D7E2E9-7370-40FD-9A44-9912A4CD9834}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3C9871A4-C8E5-41F5-A2D6-377A7FE2144E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DC6407A5-AA41-4937-A3AC-11494122F6CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CAC184A4-14B0-4DF1-BED8-BF831970CFB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{737F9204-F570-4480-8FC9-7AC5027DEA19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77054468-8237-401D-B365-1FBC494FF5DD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A79187F0-C94A-4EB9-BA6B-59FBC0067DEB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{63E2FACE-14A8-432F-8300-D5EDB5BEA978}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3862CE53-B609-48B7-8E19-9204F47BAD16}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2013699-374F-421D-9BE1-232967E3B626}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.69\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F6F0E7C-70B1-4ABA-9C39-D4BD9400A149}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
24-09-2023 15:10:09 Naplánovaný kontrolní bod
12-10-2023 19:47:35 Naplánovaný kontrolní bod
13-10-2023 13:16:17 Instalační služba modulů systému Windows
13-10-2023 17:37:37 Instalační služba modulů systému Windows
13-10-2023 18:41:22 Instalační služba modulů systému Windows
24-10-2023 07:56:00 Naplánovaný kontrolní bod
27-10-2023 11:12:04 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2023 09:19:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.118 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 32e4
Čas spuštění: 01da096e4246fdfc
Čas ukončení: 1959
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: bbbbbe73-dcc8-4fa5-9254-4a000a57dccd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/28/2023 09:12:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1c88
Čas spuštění: 01da096619a85281
Čas ukončení: 51
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: f68ef549-e5b9-4dc3-91c7-0e1a94342056
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 11:54:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e5c
Čas spuštění: 01da08baa91058da
Čas ukončení: 173
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: 6a150b57-4ef2-4d20-9e9f-466a7eaedf73
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 10:12:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 29ac
Čas spuštění: 01da089ecced4ab5
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 06e8a4a9-3164-43e8-a9f9-27cd35e5f5e9
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Cross-process
Error: (10/27/2023 09:46:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CalculatorApp.exe, verze: 11.2307.4.0, časové razítko: 0x64da6075
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x2edc
Čas spuštění chybující aplikace: 0x01da08a97e3de3bb
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 70a2f438-fc46-45a7-8853-19554629af50
Úplný název chybujícího balíčku: Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/27/2023 08:27:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1604
Čas spuštění: 01da089e9a321370
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: cb449921-64ae-4bb8-ae78-75826a7e87b1
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/26/2023 01:39:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1bac
Čas spuštění: 01da0800fe9a5cbb
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 11caae34-24f4-4077-b8df-e1d9ca16c580
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/25/2023 11:33:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0x52a5fade
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x709581f0
ID chybujícího procesu: 0x764
Čas spuštění chybující aplikace: 0x01da072653f85569
Cesta k chybující aplikaci: C:\WINDOWS\SysWOW64\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 4e017871-cc86-4460-85be-481965df95a3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/27/2023 12:21:44 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/27/2023 12:21:43 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/27/2023 10:28:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AppX Deployment Service (AppXSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/27/2023 10:28:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AppX Deployment Service (AppXSVC) bylo dosaženo časového limitu (30000 ms).
Error: (10/27/2023 10:07:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Klient zásad skupiny neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/27/2023 10:07:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Klient zásad skupiny bylo dosaženo časového limitu (30000 ms).
Error: (10/27/2023 10:07:33 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (10/27/2023 10:07:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Update neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================Event[0]:
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===============
Date: 2023-10-28 08:09:57
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-10-27 11:55:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 9CCN30WW(V2.08) 11/26/2014
Motherboard: LENOVO Lenovo B50-30
Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 76%
Total physical RAM: 3978.19 MB
Available physical RAM: 931.02 MB
Total Virtual: 8768.07 MB
Available Virtual: 4623.38 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:423.1 GB) (Free:199.91 GB) (Model: ST500LT012-1DG142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:13.33 GB) (Model: ST500LT012-1DG142) NTFS
\\?\Volume{c487d510-5913-47bc-998b-e89f03103264}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{8ff18cbd-f313-48ce-b03f-40033e7eec1a}\ () (Fixed) (Total:0.84 GB) (Free:0.24 GB) NTFS
\\?\Volume{3e91e73a-2cbd-4472-bcb4-10cdff330a34}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{e8427acf-6140-4386-8702-87f78dceefe3}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{27a78a8f-e282-42b7-857b-1eb57ffcf149}\ (PBR_DRV) (Fixed) (Total:13.49 GB) (Free:2.96 GB) NTFS
\\?\Volume{1bda7093-b1d7-4fb9-b45c-657eb6026153}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3ACB66DE)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by vlastimil (administrator) on LENOVO-PC (LENOVO 20382) (28-10-2023 08:59:28)
Running from C:\Users\vkubi_000\Desktop\FRST64.exe
Loaded Profiles: vlastimil & Administrator
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (MEDIAN s.r.o.) [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\23.209.1008.0002\Microsoft.SharePoint.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [255896 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [65019816 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\RunOnce: [Uninstall 23.204.1001.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\vkubi_000\AppData\Local\Microsoft\OneDrive\23.204.1001.0003" [0 2023-10-28] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\WINDOWS\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\WINDOWS\system32\EP0SLM01.DLL [77824 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\WINDOWS\system32\hpzllwn7.dll [51712 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.118\Installer\chrmstp.exe [2023-10-28] (Google LLC -> Google LLC)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar853.lnk [2021-01-19]
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-09-13]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-05-19]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Url Monitor.lnk [2022-03-06]
ShortcutTarget: Url Monitor.lnk -> C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe (MEDIAN s.r.o.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {F63BA807-AC80-4FFB-B8F6-332CDF611EAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {0B606F34-74C0-4EAF-A8B8-29E74B851B22} - System32\Tasks\AudioHUB => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [275968 2023-03-21] (MEDIAN s.r.o.) [File not signed]
Task: {C135E874-0366-4D91-A1FE-BD7A7D1F91B8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5135256 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
Task: {506952C4-2250-4509-9214-FF0308C985FC} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294744 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
Task: {132E1944-2B32-469A-BE54-B159FDFFCE06} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-27] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {04804061-7A4F-4A13-9478-47CB386E1B27} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {9E156082-A6DD-49A7-9962-5E2F36644134} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4762520 2023-09-13] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {922CE9AE-A87F-428F-9061-B61184ACF723} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-08-25] (Avast Software s.r.o. -> Avast Software)
Task: {3A4BF2B2-4F6C-4BAE-990D-C29118E51217} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {D5147169-F4BF-4828-9575-95B6C990A623} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {68BF39ED-D406-45BE-B131-64E980C7195E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f9838222-7e57-4787-8c36-4b24aa4f7fa2" --version "6.17.10746" --silent
Task: {1C5EBDB4-049D-4649-A70E-6846D47E179A} - System32\Tasks\CCleanerSkipUAC - vlastimil => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CD0969CC-FFB9-4973-8BEB-099D37E266B0} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{90c8f2f9-2ff8-4676-9d83-58122497fbe3}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{b56fcf72-7566-42e6-9fcb-377c33d97d9c}: [DhcpNameServer] 10.0.0.138
Edge:
=======
DownloadDir: C:\Users\vkubi_000\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2756002567-295290169-1842266776-1001 -> hxxp://seznam.cz/
Edge DefaultProfile: Default
Edge Profile: C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-27]
Edge DownloadDir: Default -> C:\Users\vkubi_000\Desktop
Edge Notifications: Default -> hxxps://aukro.cz; hxxps://sport.synottip.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.tipsport.cz
Edge Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-04-01]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2023-10-27]
Edge Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-05-06]
Edge Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-05-06]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-26]
Edge Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
Edge Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-27]
Edge Extension: (Lightshot) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jipbcefmkoccpgdbmenjpaefoldhphbl [2022-08-08]
Edge Extension: (Edge relevant text changes) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-24]
Edge Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-08-31]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2023-10-27]
Edge Extension: (Avast AntiTrack Premium) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-05-06]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default [2023-10-28]
CHR Notifications: Default -> hxxps://domovy.trovit.cz; hxxps://mapio.cz; hxxps://morozyvosmart.com; hxxps://talkonlinepanel.com; hxxps://www.chance.cz; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.ireceptar.cz; hxxps://www.kupi.cz; hxxps://www.mesec.cz; hxxps://www.svetandroida.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-06-20]
CHR Extension: (Prezentace) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-18]
CHR Extension: (Dokumenty) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-18]
CHR Extension: (Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2021-01-18]
CHR Extension: (YouTube) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-18]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2023-06-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2021-01-18]
CHR Extension: (Tabulky) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-18]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2023-06-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2023-06-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-06-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-12]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-22]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2023-06-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-15]
CHR Extension: (Gmail) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-02-26]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-13]
CHR DownloadDir: C:\Users\vkubi_000\Desktop
CHR Notifications: Profile 1 -> hxxps://bruntalsky.denik.cz; hxxps://captcha-test.top; hxxps://czech-news.com; hxxps://domovy.trovit.cz; hxxps://fastshare.cz; hxxps://fera24.cz; hxxps://moje.uniqa.cz; hxxps://online.rb.cz; hxxps://sport.synottip.cz; hxxps://talkonlinepanel.com; hxxps://twitter.com; hxxps://www.drevostavitel.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.instagram.com; hxxps://www.lordhair.com; hxxps://www.megaknihy.cz; hxxps://www.penize.cz; hxxps://www.podnikatel.cz; hxxps://www.prostaxin.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com; hxxps://www.zumail.cz; hxxps://xshare.cz
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/override.html"
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2023-07-05]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2021-01-20]
CHR Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-01-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2023-07-05]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2021-01-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2021-01-20]
CHR Extension: (YouTube Flash Video Player) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fldkdmkgnlbehfgeifjpjabmandnchpe [2021-01-20]
CHR Extension: (Pass Strength Meter) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gahnebecgllcaakcojhgndipnamdlghe [2021-01-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-19]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-13]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-13]
CHR Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-10-13]
CHR Extension: (Webcam Toy) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfbgimoladefibpklnfmkpknadbklade [2021-01-20]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-01-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-13]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9090968 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [776088 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2304920 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [796568 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S4 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22488 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [11017624 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
S4 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S4 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240176 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392984 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297992 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39760 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275168 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [708048 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213192 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [338880 2018-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 scsiscan; C:\WINDOWS\System32\drivers\scsiscan.sys [21504 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 08:59 - 2023-10-28 09:04 - 000033261 _____ C:\Users\vkubi_000\Desktop\FRST.txt
2023-10-27 12:06 - 2023-10-27 12:06 - 002383360 _____ (Farbar) C:\Users\vkubi_000\Desktop\FRST64.exe
2023-10-21 08:10 - 2023-10-21 08:10 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Backup
2023-10-18 08:16 - 2023-10-18 08:16 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 17:44 - 2023-10-13 17:44 - 000000000 ___HD C:\$WinREAgent
2023-10-13 08:49 - 2023-10-13 09:42 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\TeamViewer
2023-10-12 17:18 - 2023-10-12 17:18 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 09:03 - 2023-10-12 09:03 - 000000000 ____D C:\Program Files\RUXIM
2023-10-02 18:17 - 2023-10-02 18:15 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 09:02 - 2021-12-18 12:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-28 09:02 - 2021-01-18 21:01 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-28 09:01 - 2023-02-26 18:11 - 000000000 ____D C:\FRST
2023-10-28 08:59 - 2021-10-27 16:29 - 000000000 ____D C:\AAA
2023-10-28 08:42 - 2021-01-18 18:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-28 08:34 - 2022-07-17 09:10 - 000002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-28 08:34 - 2021-01-18 21:03 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-28 08:27 - 2023-06-20 16:49 - 000002400 _____ C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-28 08:27 - 2022-07-07 13:39 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:27 - 2021-01-18 22:39 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:18 - 2022-11-08 08:43 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-10-27 11:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-27 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-27 11:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-27 11:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-27 11:02 - 2023-08-31 08:16 - 000002461 _____ C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk
2023-10-27 09:46 - 2021-01-21 17:18 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\CrashDumps
2023-10-26 10:15 - 2023-01-20 10:15 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-26 10:15 - 2021-01-26 09:46 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-26 09:52 - 2021-01-26 09:44 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 09:52 - 2021-01-26 09:44 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-25 11:33 - 2022-12-22 09:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 11:33 - 2022-11-13 18:25 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-25 11:33 - 2021-01-18 23:23 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-25 11:33 - 2021-01-18 23:23 - 000000000 ____D C:\Program Files\CCleaner
2023-10-23 16:08 - 2021-02-05 18:08 - 000004302 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-10-20 09:51 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-20 07:10 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-20 06:26 - 2021-01-19 02:28 - 000788632 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-20 06:26 - 2021-01-19 02:28 - 000175478 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-20 06:26 - 2021-01-18 19:51 - 001890118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-20 06:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2023-10-20 06:21 - 2021-01-20 19:40 - 000000000 ____D C:\ProgramData\AVAST Software
2023-10-20 06:20 - 2021-04-06 07:11 - 000000000 ____D C:\ProgramData\Synaptics
2023-10-20 06:20 - 2021-01-18 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-20 06:20 - 2020-07-28 14:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-20 06:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-19 12:20 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-19 11:51 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-19 11:49 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-19 10:53 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-19 10:52 - 2019-12-07 11:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-19 10:52 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-18 08:12 - 2021-01-18 19:09 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-18 07:50 - 2021-01-20 19:35 - 000000000 ____D C:\Program Files\WinRAR
2023-10-18 07:50 - 2020-05-06 21:55 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-18 07:50 - 2019-02-12 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-13 13:16 - 2021-01-21 09:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 13:03 - 2021-01-21 09:19 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-09 11:18 - 2019-02-16 16:00 - 000000000 ____D C:\Users\vkubi_000\TapinRadio
2023-10-05 18:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-02 18:17 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-02 18:16 - 2021-01-22 11:33 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-02 18:15 - 2021-01-22 12:00 - 000559696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000708048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000297992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000275168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000039760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000950696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000392984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000240176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
==================== Files in the root of some directories ========
2021-02-14 20:53 - 2021-02-14 20:53 - 000000092 _____ () C:\Users\vkubi_000\AppData\Roaming\Control System_Settings.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Zdravbím! Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2023
# Duration: 00:01:14
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Administrator\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\vkubi_000\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1834 octets] - [28/10/2023 11:27:39]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2023
# Duration: 00:01:14
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Administrator\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\vkubi_000\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1834 octets] - [28/10/2023 11:27:39]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by vlastimil (28-10-2023 14:10:37)
Running from C:\Users\vkubi_000\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2021-01-18 18:25:14)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2756002567-295290169-1842266776-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2756002567-295290169-1842266776-503 - Limited - Disabled)
Guest (S-1-5-21-2756002567-295290169-1842266776-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2756002567-295290169-1842266776-1003 - Limited - Enabled)
vlastimil (S-1-5-21-2756002567-295290169-1842266776-1001 - Administrator - Enabled) => C:\Users\vkubi_000
WDAGUtilityAccount (S-1-5-21-2756002567-295290169-1842266776-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.003.20322 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601042}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.9.6082 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.27.8746.9512 - Avast Software)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1634.4 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Expert Lotto 5 (HKLM\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Free Registry Defrag (HKLM-x32\...\Free Registry Defrag_is1) (Version: - iExpert Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.118 - Google LLC)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 341 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\OneDriveSetup.exe) (Version: 23.209.1008.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
MP3Studio YouTube Downloader (HKLM-x32\...\{2B96C253-7C3F-40AF-9B9C-C9F4E772C018}) (Version: 2.0.8.2 - MP3Studio/) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Version: 8.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Version: 8.5 - Apple Inc.)
TapinRadio 2.04.2 (x32) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 1.1.0.10 - )
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-07-05] (Microsoft Corporation)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10829.535.0_x64__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-21] (Microsoft Studios) [MS Ad]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.926.1327.882_neutral__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Office.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Vl (Osoba 2) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_341\bin\ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2021-01-27 09:14 - 2021-01-27 09:19 - 000000438 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\Control Panel\Desktop\\Wallpaper -> c:\users\vkubi_000\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg
HKU\S-1-5-21-2756002567-295290169-1842266776-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: avast => 2
MSCONFIG\Services: avast! Tools => 2
MSCONFIG\Services: avastm => 3
MSCONFIG\Services: AvastSecureBrowserElevationService => 3
MSCONFIG\Services: avg => 2
MSCONFIG\Services: AVG Tools => 2
MSCONFIG\Services: avgm => 3
MSCONFIG\Services: AVGSecureBrowserElevationService => 3
MSCONFIG\Services: CCleanerPerformanceOptimizerService => 3
MSCONFIG\Services: CleanupPSvc => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: igfxCUIService1.0.0.0 => 2
MSCONFIG\Services: ImControllerService => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SecureLine => 2
MSCONFIG\Services: valWBFPolicyService => 2
MSCONFIG\Services: valWbioSyncSvc => 2
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar803.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar989.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar755.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar672.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Url Monitor.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar309.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar733.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar389.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "AVGBrowserAutoLaunch_FB3C3B6CBC049AC46F71FFA1F90EEDA7"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MP3Studio YouTube Downloader"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar947.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar853.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{62D3F8D5-2F15-42BE-BA6D-76C0586E3988}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{02D8F56B-9A1A-4E38-8FBC-D1DA9777B1C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463D118F-985D-4F67-AB28-4E4A248075ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C831AB9-0B6C-41AA-9F56-16FAB9061F6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EAB757BB-1BA8-4844-90FB-E3C2F019900C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8FD077D8-38A9-4122-87FC-4FF33824AF58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4C100107-DDB1-4A7C-993D-4B94D91ABBB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EE609E94-93FB-4E2F-AEB5-F9F8C9E151A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D9CDE018-8524-487A-B0CB-B150299C16B0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{53414C1D-B38F-4403-8500-8DCE4320A3AF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{92C84504-9A7C-40C1-98B1-EB1F92C52502}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2C39BEC8-7F15-491B-BB2A-07E5159D3A5A}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C16BA713-7A0D-4793-8AAB-C0EF63ABCAA7}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{53BFD7F7-313A-4271-9F5B-38542B2D46BF}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C4B956B-CB2C-4E29-8568-8F3892BA3158}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DB7555DD-0B46-41A9-BFCA-AAD5FF6E039F}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{64D7E2E9-7370-40FD-9A44-9912A4CD9834}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3C9871A4-C8E5-41F5-A2D6-377A7FE2144E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DC6407A5-AA41-4937-A3AC-11494122F6CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CAC184A4-14B0-4DF1-BED8-BF831970CFB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{737F9204-F570-4480-8FC9-7AC5027DEA19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2013699-374F-421D-9BE1-232967E3B626}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.69\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F6F0E7C-70B1-4ABA-9C39-D4BD9400A149}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{49AD0BAA-B05A-409F-AAC2-C856E7627975}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C48D4808-2618-4ECE-BC62-2599762D9B33}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A36F5678-89E5-4ACD-AD3D-9D91559D9A2F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B9E15A8-C2C7-474C-9650-5A7F42B99AE4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-10-2023 18:41:22 Instalační služba modulů systému Windows
24-10-2023 07:56:00 Naplánovaný kontrolní bod
27-10-2023 11:12:04 Instalační služba modulů systému Windows
28-10-2023 11:28:26 AdwCleaner_BeforeCleaning_28/10/2023_11:28:24
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2023 09:37:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.118 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 26e8
Čas spuštění: 01da09708d7d39e8
Čas ukončení: 79
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: 5d7e69e4-1767-4e14-a913-e6c27bbb3376
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/28/2023 09:19:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.118 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 32e4
Čas spuštění: 01da096e4246fdfc
Čas ukončení: 1959
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: bbbbbe73-dcc8-4fa5-9254-4a000a57dccd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/28/2023 09:12:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1c88
Čas spuštění: 01da096619a85281
Čas ukončení: 51
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: f68ef549-e5b9-4dc3-91c7-0e1a94342056
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 11:54:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e5c
Čas spuštění: 01da08baa91058da
Čas ukončení: 173
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: 6a150b57-4ef2-4d20-9e9f-466a7eaedf73
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 10:12:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 29ac
Čas spuštění: 01da089ecced4ab5
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 06e8a4a9-3164-43e8-a9f9-27cd35e5f5e9
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Cross-process
Error: (10/27/2023 09:46:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CalculatorApp.exe, verze: 11.2307.4.0, časové razítko: 0x64da6075
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x2edc
Čas spuštění chybující aplikace: 0x01da08a97e3de3bb
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 70a2f438-fc46-45a7-8853-19554629af50
Úplný název chybujícího balíčku: Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/27/2023 08:27:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1604
Čas spuštění: 01da089e9a321370
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: cb449921-64ae-4bb8-ae78-75826a7e87b1
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/26/2023 01:39:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1bac
Čas spuštění: 01da0800fe9a5cbb
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 11caae34-24f4-4077-b8df-e1d9ca16c580
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
System errors:
=============
Error: (10/28/2023 11:49:40 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (10/28/2023 11:48:53 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.
Error: (10/28/2023 11:48:37 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby TrustedInstaller s argumenty Není k dispozici za účelem spuštění serveru:
{752073A1-23F2-4396-85F0-8FDB879ED0ED}
Error: (10/28/2023 11:32:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/28/2023 11:31:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast Cleanup byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/28/2023 11:31:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Správa služby IIS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/28/2023 11:23:03 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NcdAutoSetup bylo dosaženo časového limitu (30000 ms).
Error: (10/27/2023 12:21:44 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]:
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===============
Date: 2023-10-28 11:54:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-10-28 11:53:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 9CCN30WW(V2.08) 11/26/2014
Motherboard: LENOVO Lenovo B50-30
Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 76%
Total physical RAM: 3978.19 MB
Available physical RAM: 926.84 MB
Total Virtual: 6282.19 MB
Available Virtual: 3041.44 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:423.1 GB) (Free:212.19 GB) (Model: ST500LT012-1DG142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:13.33 GB) (Model: ST500LT012-1DG142) NTFS
\\?\Volume{c487d510-5913-47bc-998b-e89f03103264}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{8ff18cbd-f313-48ce-b03f-40033e7eec1a}\ () (Fixed) (Total:0.84 GB) (Free:0.24 GB) NTFS
\\?\Volume{3e91e73a-2cbd-4472-bcb4-10cdff330a34}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{e8427acf-6140-4386-8702-87f78dceefe3}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{27a78a8f-e282-42b7-857b-1eb57ffcf149}\ (PBR_DRV) (Fixed) (Total:13.49 GB) (Free:2.96 GB) NTFS
\\?\Volume{1bda7093-b1d7-4fb9-b45c-657eb6026153}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3ACB66DE)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by vlastimil (administrator) on LENOVO-PC (LENOVO 20382) (28-10-2023 13:55:10)
Running from C:\Users\vkubi_000\Desktop\FRST64.exe
Loaded Profiles: vlastimil
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\AvBugReport.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\AvBugReport.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [255896 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\WINDOWS\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\WINDOWS\system32\EP0SLM01.DLL [77824 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\WINDOWS\system32\hpzllwn7.dll [51712 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.118\Installer\chrmstp.exe [2023-10-28] (Google LLC -> Google LLC)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar853.lnk [2021-01-19]
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-09-13]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-05-19]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Url Monitor.lnk [2022-03-06]
ShortcutTarget: Url Monitor.lnk -> C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe (MEDIAN s.r.o.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {F63BA807-AC80-4FFB-B8F6-332CDF611EAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {0B606F34-74C0-4EAF-A8B8-29E74B851B22} - System32\Tasks\AudioHUB => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [275968 2023-03-21] (MEDIAN s.r.o.) [File not signed]
Task: {C135E874-0366-4D91-A1FE-BD7A7D1F91B8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5135256 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
Task: {C6210830-6FCB-4D00-A0DD-FC1EA990767D} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294744 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
Task: {132E1944-2B32-469A-BE54-B159FDFFCE06} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-27] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {04804061-7A4F-4A13-9478-47CB386E1B27} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {9E156082-A6DD-49A7-9962-5E2F36644134} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4762520 2023-09-13] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {922CE9AE-A87F-428F-9061-B61184ACF723} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-08-25] (Avast Software s.r.o. -> Avast Software)
Task: {3A4BF2B2-4F6C-4BAE-990D-C29118E51217} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {D5147169-F4BF-4828-9575-95B6C990A623} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {68BF39ED-D406-45BE-B131-64E980C7195E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f9838222-7e57-4787-8c36-4b24aa4f7fa2" --version "6.17.10746" --silent
Task: {1C5EBDB4-049D-4649-A70E-6846D47E179A} - System32\Tasks\CCleanerSkipUAC - vlastimil => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CD0969CC-FFB9-4973-8BEB-099D37E266B0} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{90c8f2f9-2ff8-4676-9d83-58122497fbe3}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{b56fcf72-7566-42e6-9fcb-377c33d97d9c}: [DhcpNameServer] 10.0.0.138
Edge:
=======
DownloadDir: C:\Users\vkubi_000\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2756002567-295290169-1842266776-1001 -> hxxp://seznam.cz/
Edge DefaultProfile: Default
Edge Profile: C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-27]
Edge DownloadDir: Default -> C:\Users\vkubi_000\Desktop
Edge Notifications: Default -> hxxps://aukro.cz; hxxps://sport.synottip.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.tipsport.cz
Edge Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-04-01]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2023-10-27]
Edge Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-05-06]
Edge Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-05-06]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-26]
Edge Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
Edge Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-27]
Edge Extension: (Lightshot) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jipbcefmkoccpgdbmenjpaefoldhphbl [2022-08-08]
Edge Extension: (Edge relevant text changes) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-24]
Edge Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-08-31]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2023-10-27]
Edge Extension: (Avast AntiTrack Premium) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-05-06]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default [2023-10-28]
CHR Notifications: Default -> hxxps://domovy.trovit.cz; hxxps://mapio.cz; hxxps://morozyvosmart.com; hxxps://talkonlinepanel.com; hxxps://www.chance.cz; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.ireceptar.cz; hxxps://www.kupi.cz; hxxps://www.mesec.cz; hxxps://www.svetandroida.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-06-20]
CHR Extension: (Prezentace) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-18]
CHR Extension: (Dokumenty) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-18]
CHR Extension: (Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2021-01-18]
CHR Extension: (YouTube) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-18]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2023-06-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2021-01-18]
CHR Extension: (Tabulky) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-18]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2023-06-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2023-06-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-06-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-12]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-22]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2023-06-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-15]
CHR Extension: (Gmail) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-02-26]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-13]
CHR DownloadDir: C:\Users\vkubi_000\Desktop
CHR Notifications: Profile 1 -> hxxps://bruntalsky.denik.cz; hxxps://captcha-test.top; hxxps://czech-news.com; hxxps://domovy.trovit.cz; hxxps://fastshare.cz; hxxps://fera24.cz; hxxps://moje.uniqa.cz; hxxps://online.rb.cz; hxxps://sport.synottip.cz; hxxps://talkonlinepanel.com; hxxps://twitter.com; hxxps://www.drevostavitel.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.instagram.com; hxxps://www.lordhair.com; hxxps://www.megaknihy.cz; hxxps://www.penize.cz; hxxps://www.podnikatel.cz; hxxps://www.prostaxin.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com; hxxps://www.zumail.cz; hxxps://xshare.cz
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/override.html"
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2023-07-05]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2021-01-20]
CHR Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-01-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2023-07-05]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2021-01-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2021-01-20]
CHR Extension: (YouTube Flash Video Player) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fldkdmkgnlbehfgeifjpjabmandnchpe [2021-01-20]
CHR Extension: (Pass Strength Meter) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gahnebecgllcaakcojhgndipnamdlghe [2021-01-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-19]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-13]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-13]
CHR Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-10-13]
CHR Extension: (Webcam Toy) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfbgimoladefibpklnfmkpknadbklade [2021-01-20]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-01-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-13]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9090968 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [776088 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2304920 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [796568 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22488 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [11017624 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
S4 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S4 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240176 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392984 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297992 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39760 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275168 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [708048 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213192 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [338880 2018-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 scsiscan; C:\WINDOWS\System32\drivers\scsiscan.sys [21504 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 13:55 - 2023-10-28 13:59 - 000031819 _____ C:\Users\vkubi_000\Desktop\FRST.txt
2023-10-28 11:51 - 2023-10-28 11:51 - 000438968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-28 11:26 - 2023-10-28 11:31 - 000000000 ____D C:\AdwCleaner
2023-10-28 11:25 - 2023-10-28 11:25 - 008791352 _____ (Malwarebytes) C:\Users\vkubi_000\Desktop\adwcleaner.exe
2023-10-27 12:06 - 2023-10-27 12:06 - 002383360 _____ (Farbar) C:\Users\vkubi_000\Desktop\FRST64.exe
2023-10-21 08:10 - 2023-10-21 08:10 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Backup
2023-10-18 08:16 - 2023-10-18 08:16 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 17:44 - 2023-10-13 17:44 - 000000000 ___HD C:\$WinREAgent
2023-10-13 08:49 - 2023-10-13 09:42 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\TeamViewer
2023-10-12 17:18 - 2023-10-12 17:18 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 09:03 - 2023-10-12 09:03 - 000000000 ____D C:\Program Files\RUXIM
2023-10-02 18:17 - 2023-10-02 18:15 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 14:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-28 14:03 - 2021-12-18 12:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-28 14:03 - 2021-01-18 21:01 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-28 13:57 - 2023-02-26 18:11 - 000000000 ____D C:\FRST
2023-10-28 11:56 - 2021-01-19 02:28 - 000788632 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-28 11:56 - 2021-01-19 02:28 - 000175478 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-28 11:56 - 2021-01-18 19:51 - 001890118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-28 11:56 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-28 11:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2023-10-28 11:52 - 2021-02-05 18:08 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-10-28 11:52 - 2021-01-20 19:40 - 000000000 ____D C:\ProgramData\AVAST Software
2023-10-28 11:51 - 2022-11-13 18:25 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-28 11:51 - 2021-04-06 07:11 - 000000000 ____D C:\ProgramData\Synaptics
2023-10-28 11:51 - 2021-01-18 23:23 - 000000000 ____D C:\Program Files\CCleaner
2023-10-28 11:51 - 2021-01-18 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-28 11:51 - 2021-01-18 18:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-28 11:51 - 2020-07-28 14:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-28 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-28 11:50 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-28 11:32 - 2021-01-18 19:07 - 000000000 ____D C:\ProgramData\Lenovo
2023-10-28 11:31 - 2023-02-12 20:46 - 000000000 ____D C:\Users\Administrator\AppData\Local\Lenovo
2023-10-28 11:31 - 2021-01-19 02:13 - 000000000 ____D C:\WINDOWS\Lenovo
2023-10-28 11:31 - 2021-01-18 22:34 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Lenovo
2023-10-28 11:31 - 2021-01-18 19:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-10-28 11:26 - 2021-10-27 16:29 - 000000000 ____D C:\AAA
2023-10-28 09:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-28 09:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-28 08:34 - 2022-07-17 09:10 - 000002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-28 08:34 - 2021-01-18 21:03 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-28 08:27 - 2023-06-20 16:49 - 000002400 _____ C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-28 08:27 - 2022-07-07 13:39 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:27 - 2021-01-18 22:39 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:18 - 2022-11-08 08:43 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-10-27 11:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-27 11:02 - 2023-08-31 08:16 - 000002461 _____ C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk
2023-10-27 09:46 - 2021-01-21 17:18 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\CrashDumps
2023-10-26 10:15 - 2023-01-20 10:15 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-26 10:15 - 2021-01-26 09:46 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-26 09:52 - 2021-01-26 09:44 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 09:52 - 2021-01-26 09:44 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-25 11:33 - 2022-12-22 09:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 11:33 - 2021-01-18 23:23 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-20 07:10 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-19 11:51 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-19 11:49 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-19 10:53 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-19 10:52 - 2019-12-07 11:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-19 10:52 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-18 08:12 - 2021-01-18 19:09 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-18 07:50 - 2021-01-20 19:35 - 000000000 ____D C:\Program Files\WinRAR
2023-10-18 07:50 - 2020-05-06 21:55 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-18 07:50 - 2019-02-12 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-13 13:16 - 2021-01-21 09:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 13:03 - 2021-01-21 09:19 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-09 11:18 - 2019-02-16 16:00 - 000000000 ____D C:\Users\vkubi_000\TapinRadio
2023-10-05 18:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-02 18:17 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-02 18:16 - 2021-01-22 11:33 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-02 18:15 - 2021-01-22 12:00 - 000559696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000708048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000297992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000275168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000039760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000950696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000392984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000240176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
==================== Files in the root of some directories ========
2021-02-14 20:53 - 2021-02-14 20:53 - 000000092 _____ () C:\Users\vkubi_000\AppData\Roaming\Control System_Settings.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by vlastimil (28-10-2023 14:10:37)
Running from C:\Users\vkubi_000\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2021-01-18 18:25:14)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2756002567-295290169-1842266776-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2756002567-295290169-1842266776-503 - Limited - Disabled)
Guest (S-1-5-21-2756002567-295290169-1842266776-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2756002567-295290169-1842266776-1003 - Limited - Enabled)
vlastimil (S-1-5-21-2756002567-295290169-1842266776-1001 - Administrator - Enabled) => C:\Users\vkubi_000
WDAGUtilityAccount (S-1-5-21-2756002567-295290169-1842266776-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.003.20322 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601042}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.9.6082 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.27.8746.9512 - Avast Software)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1634.4 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Expert Lotto 5 (HKLM\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Free Registry Defrag (HKLM-x32\...\Free Registry Defrag_is1) (Version: - iExpert Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.118 - Google LLC)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 341 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.69 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\OneDriveSetup.exe) (Version: 23.209.1008.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
MP3Studio YouTube Downloader (HKLM-x32\...\{2B96C253-7C3F-40AF-9B9C-C9F4E772C018}) (Version: 2.0.8.2 - MP3Studio/) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Version: 8.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Version: 8.5 - Apple Inc.)
TapinRadio 2.04.2 (x32) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 1.1.0.10 - )
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-07-05] (Microsoft Corporation)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10829.535.0_x64__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-21] (Microsoft Studios) [MS Ad]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.926.1327.882_neutral__8wekyb3d8bbwe [2023-09-26] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\vkubi_000\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2756002567-295290169-1842266776-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\vkubi_000\Desktop\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Office.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Vl (Osoba 2) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_341\bin\ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2021-01-27 09:14 - 2021-01-27 09:19 - 000000438 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\Control Panel\Desktop\\Wallpaper -> c:\users\vkubi_000\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg
HKU\S-1-5-21-2756002567-295290169-1842266776-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: avast => 2
MSCONFIG\Services: avast! Tools => 2
MSCONFIG\Services: avastm => 3
MSCONFIG\Services: AvastSecureBrowserElevationService => 3
MSCONFIG\Services: avg => 2
MSCONFIG\Services: AVG Tools => 2
MSCONFIG\Services: avgm => 3
MSCONFIG\Services: AVGSecureBrowserElevationService => 3
MSCONFIG\Services: CCleanerPerformanceOptimizerService => 3
MSCONFIG\Services: CleanupPSvc => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: igfxCUIService1.0.0.0 => 2
MSCONFIG\Services: ImControllerService => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SecureLine => 2
MSCONFIG\Services: valWBFPolicyService => 2
MSCONFIG\Services: valWbioSyncSvc => 2
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar803.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar989.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar755.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar672.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Url Monitor.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar309.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar733.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\StartupFolder: => "Sidebar389.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "AVGBrowserAutoLaunch_FB3C3B6CBC049AC46F71FFA1F90EEDA7"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MP3Studio YouTube Downloader"
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar947.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\StartupFolder: => "Sidebar853.lnk"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{62D3F8D5-2F15-42BE-BA6D-76C0586E3988}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{02D8F56B-9A1A-4E38-8FBC-D1DA9777B1C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{463D118F-985D-4F67-AB28-4E4A248075ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C831AB9-0B6C-41AA-9F56-16FAB9061F6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EAB757BB-1BA8-4844-90FB-E3C2F019900C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8FD077D8-38A9-4122-87FC-4FF33824AF58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4C100107-DDB1-4A7C-993D-4B94D91ABBB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EE609E94-93FB-4E2F-AEB5-F9F8C9E151A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D9CDE018-8524-487A-B0CB-B150299C16B0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{53414C1D-B38F-4403-8500-8DCE4320A3AF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{92C84504-9A7C-40C1-98B1-EB1F92C52502}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2C39BEC8-7F15-491B-BB2A-07E5159D3A5A}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C16BA713-7A0D-4793-8AAB-C0EF63ABCAA7}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{53BFD7F7-313A-4271-9F5B-38542B2D46BF}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C4B956B-CB2C-4E29-8568-8F3892BA3158}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DB7555DD-0B46-41A9-BFCA-AAD5FF6E039F}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{64D7E2E9-7370-40FD-9A44-9912A4CD9834}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3C9871A4-C8E5-41F5-A2D6-377A7FE2144E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DC6407A5-AA41-4937-A3AC-11494122F6CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CAC184A4-14B0-4DF1-BED8-BF831970CFB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{737F9204-F570-4480-8FC9-7AC5027DEA19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3426.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2013699-374F-421D-9BE1-232967E3B626}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.69\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F6F0E7C-70B1-4ABA-9C39-D4BD9400A149}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{49AD0BAA-B05A-409F-AAC2-C856E7627975}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C48D4808-2618-4ECE-BC62-2599762D9B33}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A36F5678-89E5-4ACD-AD3D-9D91559D9A2F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B9E15A8-C2C7-474C-9650-5A7F42B99AE4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-10-2023 18:41:22 Instalační služba modulů systému Windows
24-10-2023 07:56:00 Naplánovaný kontrolní bod
27-10-2023 11:12:04 Instalační služba modulů systému Windows
28-10-2023 11:28:26 AdwCleaner_BeforeCleaning_28/10/2023_11:28:24
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2023 09:37:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.118 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 26e8
Čas spuštění: 01da09708d7d39e8
Čas ukončení: 79
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: 5d7e69e4-1767-4e14-a913-e6c27bbb3376
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/28/2023 09:19:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.118 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 32e4
Čas spuštění: 01da096e4246fdfc
Čas ukončení: 1959
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: bbbbbe73-dcc8-4fa5-9254-4a000a57dccd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/28/2023 09:12:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1c88
Čas spuštění: 01da096619a85281
Čas ukončení: 51
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: f68ef549-e5b9-4dc3-91c7-0e1a94342056
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 11:54:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 118.0.5993.90 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e5c
Čas spuštění: 01da08baa91058da
Čas ukončení: 173
Cesta k aplikaci: C:\Program Files\Google\Chrome\Application\chrome.exe
ID hlášení: 6a150b57-4ef2-4d20-9e9f-466a7eaedf73
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/27/2023 10:12:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 29ac
Čas spuštění: 01da089ecced4ab5
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 06e8a4a9-3164-43e8-a9f9-27cd35e5f5e9
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Cross-process
Error: (10/27/2023 09:46:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CalculatorApp.exe, verze: 11.2307.4.0, časové razítko: 0x64da6075
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x2edc
Čas spuštění chybující aplikace: 0x01da08a97e3de3bb
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 70a2f438-fc46-45a7-8853-19554629af50
Úplný název chybujícího balíčku: Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/27/2023 08:27:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1604
Čas spuštění: 01da089e9a321370
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: cb449921-64ae-4bb8-ae78-75826a7e87b1
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/26/2023 01:39:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1bac
Čas spuštění: 01da0800fe9a5cbb
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 11caae34-24f4-4077-b8df-e1d9ca16c580
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
System errors:
=============
Error: (10/28/2023 11:49:40 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (10/28/2023 11:48:53 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.
Error: (10/28/2023 11:48:37 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby TrustedInstaller s argumenty Není k dispozici za účelem spuštění serveru:
{752073A1-23F2-4396-85F0-8FDB879ED0ED}
Error: (10/28/2023 11:32:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/28/2023 11:31:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast Cleanup byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/28/2023 11:31:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Správa služby IIS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/28/2023 11:23:03 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NcdAutoSetup bylo dosaženo časového limitu (30000 ms).
Error: (10/27/2023 12:21:44 PM) (Source: DCOM) (EventID: 10010) (User: Lenovo-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]:
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.379.25.0
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2022-11-08 08:00:12
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.19800.4
Předchozí verze modulu: 1.1.17700.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2021-09-10 14:42:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.2627.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===============
Date: 2023-10-28 11:54:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-10-28 11:53:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 9CCN30WW(V2.08) 11/26/2014
Motherboard: LENOVO Lenovo B50-30
Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 76%
Total physical RAM: 3978.19 MB
Available physical RAM: 926.84 MB
Total Virtual: 6282.19 MB
Available Virtual: 3041.44 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:423.1 GB) (Free:212.19 GB) (Model: ST500LT012-1DG142) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:13.33 GB) (Model: ST500LT012-1DG142) NTFS
\\?\Volume{c487d510-5913-47bc-998b-e89f03103264}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{8ff18cbd-f313-48ce-b03f-40033e7eec1a}\ () (Fixed) (Total:0.84 GB) (Free:0.24 GB) NTFS
\\?\Volume{3e91e73a-2cbd-4472-bcb4-10cdff330a34}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{e8427acf-6140-4386-8702-87f78dceefe3}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{27a78a8f-e282-42b7-857b-1eb57ffcf149}\ (PBR_DRV) (Fixed) (Total:13.49 GB) (Free:2.96 GB) NTFS
\\?\Volume{1bda7093-b1d7-4fb9-b45c-657eb6026153}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3ACB66DE)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by vlastimil (administrator) on LENOVO-PC (LENOVO 20382) (28-10-2023 13:55:10)
Running from C:\Users\vkubi_000\Desktop\FRST64.exe
Loaded Profiles: vlastimil
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\AvBugReport.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\AvBugReport.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [255896 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\vkubi_000\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2756002567-295290169-1842266776-1001\...\Run: [MicrosoftEdgeAutoLaunch_6E236D41DB9779B1B99DA375447F9C68] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756002567-295290169-1842266776-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\WINDOWS\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\WINDOWS\system32\EP0SLM01.DLL [77824 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\WINDOWS\system32\hpzllwn7.dll [51712 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.118\Installer\chrmstp.exe [2023-10-28] (Google LLC -> Google LLC)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar853.lnk [2021-01-19]
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-09-13]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-05-19]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Url Monitor.lnk [2022-03-06]
ShortcutTarget: Url Monitor.lnk -> C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe (MEDIAN s.r.o.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {F63BA807-AC80-4FFB-B8F6-332CDF611EAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {0B606F34-74C0-4EAF-A8B8-29E74B851B22} - System32\Tasks\AudioHUB => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [275968 2023-03-21] (MEDIAN s.r.o.) [File not signed]
Task: {C135E874-0366-4D91-A1FE-BD7A7D1F91B8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5135256 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
Task: {C6210830-6FCB-4D00-A0DD-FC1EA990767D} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294744 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
Task: {132E1944-2B32-469A-BE54-B159FDFFCE06} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-27] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {04804061-7A4F-4A13-9478-47CB386E1B27} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {9E156082-A6DD-49A7-9962-5E2F36644134} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4762520 2023-09-13] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {922CE9AE-A87F-428F-9061-B61184ACF723} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-08-25] (Avast Software s.r.o. -> Avast Software)
Task: {3A4BF2B2-4F6C-4BAE-990D-C29118E51217} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {D5147169-F4BF-4828-9575-95B6C990A623} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {68BF39ED-D406-45BE-B131-64E980C7195E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f9838222-7e57-4787-8c36-4b24aa4f7fa2" --version "6.17.10746" --silent
Task: {1C5EBDB4-049D-4649-A70E-6846D47E179A} - System32\Tasks\CCleanerSkipUAC - vlastimil => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {CD0969CC-FFB9-4973-8BEB-099D37E266B0} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{90c8f2f9-2ff8-4676-9d83-58122497fbe3}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{b56fcf72-7566-42e6-9fcb-377c33d97d9c}: [DhcpNameServer] 10.0.0.138
Edge:
=======
DownloadDir: C:\Users\vkubi_000\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2756002567-295290169-1842266776-1001 -> hxxp://seznam.cz/
Edge DefaultProfile: Default
Edge Profile: C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-27]
Edge DownloadDir: Default -> C:\Users\vkubi_000\Desktop
Edge Notifications: Default -> hxxps://aukro.cz; hxxps://sport.synottip.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.tipsport.cz
Edge Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-04-01]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2023-10-27]
Edge Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-05-06]
Edge Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-05-06]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-26]
Edge Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
Edge Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-27]
Edge Extension: (Lightshot) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jipbcefmkoccpgdbmenjpaefoldhphbl [2022-08-08]
Edge Extension: (Edge relevant text changes) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-24]
Edge Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-08-31]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2023-10-27]
Edge Extension: (Avast AntiTrack Premium) - C:\Users\vkubi_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-05-06]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-10-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default [2023-10-28]
CHR Notifications: Default -> hxxps://domovy.trovit.cz; hxxps://mapio.cz; hxxps://morozyvosmart.com; hxxps://talkonlinepanel.com; hxxps://www.chance.cz; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.ireceptar.cz; hxxps://www.kupi.cz; hxxps://www.mesec.cz; hxxps://www.svetandroida.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-06-20]
CHR Extension: (Prezentace) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-18]
CHR Extension: (Dokumenty) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-18]
CHR Extension: (Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2021-01-18]
CHR Extension: (YouTube) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-18]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2023-06-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2021-01-18]
CHR Extension: (Tabulky) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-18]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2023-06-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2023-06-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-06-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-12]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-22]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2023-06-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-15]
CHR Extension: (Gmail) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-02-26]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-13]
CHR DownloadDir: C:\Users\vkubi_000\Desktop
CHR Notifications: Profile 1 -> hxxps://bruntalsky.denik.cz; hxxps://captcha-test.top; hxxps://czech-news.com; hxxps://domovy.trovit.cz; hxxps://fastshare.cz; hxxps://fera24.cz; hxxps://moje.uniqa.cz; hxxps://online.rb.cz; hxxps://sport.synottip.cz; hxxps://talkonlinepanel.com; hxxps://twitter.com; hxxps://www.drevostavitel.cz; hxxps://www.facebook.com; hxxps://www.ifortuna.cz; hxxps://www.instagram.com; hxxps://www.lordhair.com; hxxps://www.megaknihy.cz; hxxps://www.penize.cz; hxxps://www.podnikatel.cz; hxxps://www.prostaxin.cz; hxxps://www.tipsport.cz; hxxps://www.wish.com; hxxps://www.youtube.com; hxxps://www.zumail.cz; hxxps://xshare.cz
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/override.html"
CHR Extension: (Překladač Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Volání přes Skype) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2023-07-05]
CHR Extension: (Avast Passwords) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2021-01-20]
CHR Extension: (Convertio) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-01-20]
CHR Extension: (Hangouts Notifications) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fbpmaadfebbedknhmeeijeicldjlegee [2023-07-05]
CHR Extension: (Word Online) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2021-01-20]
CHR Extension: (Full Screen Weather) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2021-01-20]
CHR Extension: (YouTube Flash Video Player) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fldkdmkgnlbehfgeifjpjabmandnchpe [2021-01-20]
CHR Extension: (Pass Strength Meter) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gahnebecgllcaakcojhgndipnamdlghe [2021-01-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-19]
CHR Extension: (Uložit na Disk Google) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2023-02-28]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-10-13]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2023-10-13]
CHR Extension: (Netpanel) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-10-13]
CHR Extension: (Webcam Toy) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfbgimoladefibpklnfmkpknadbklade [2021-01-20]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-01-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\vkubi_000\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-13]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9090968 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [776088 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2304920 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [796568 2023-10-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-27] (Avast Software s.r.o. -> AVAST Software)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22488 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [11017624 2023-09-13] (Avast Software s.r.o. -> AVAST Software)
S4 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S4 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240176 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392984 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297992 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39760 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275168 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950696 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [708048 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213192 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-10-02] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [338880 2018-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 scsiscan; C:\WINDOWS\System32\drivers\scsiscan.sys [21504 2023-10-18] (Microsoft Windows -> Microsoft Corporation)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-22] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 13:55 - 2023-10-28 13:59 - 000031819 _____ C:\Users\vkubi_000\Desktop\FRST.txt
2023-10-28 11:51 - 2023-10-28 11:51 - 000438968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-28 11:26 - 2023-10-28 11:31 - 000000000 ____D C:\AdwCleaner
2023-10-28 11:25 - 2023-10-28 11:25 - 008791352 _____ (Malwarebytes) C:\Users\vkubi_000\Desktop\adwcleaner.exe
2023-10-27 12:06 - 2023-10-27 12:06 - 002383360 _____ (Farbar) C:\Users\vkubi_000\Desktop\FRST64.exe
2023-10-21 08:10 - 2023-10-21 08:10 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Backup
2023-10-18 08:16 - 2023-10-18 08:16 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 17:44 - 2023-10-13 17:44 - 000000000 ___HD C:\$WinREAgent
2023-10-13 08:49 - 2023-10-13 09:42 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\TeamViewer
2023-10-12 17:18 - 2023-10-12 17:18 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 09:03 - 2023-10-12 09:03 - 000000000 ____D C:\Program Files\RUXIM
2023-10-02 18:17 - 2023-10-02 18:15 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-28 14:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-28 14:03 - 2021-12-18 12:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-28 14:03 - 2021-01-18 21:01 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-28 13:57 - 2023-02-26 18:11 - 000000000 ____D C:\FRST
2023-10-28 11:56 - 2021-01-19 02:28 - 000788632 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-28 11:56 - 2021-01-19 02:28 - 000175478 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-28 11:56 - 2021-01-18 19:51 - 001890118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-28 11:56 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-28 11:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2023-10-28 11:52 - 2021-02-05 18:08 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-10-28 11:52 - 2021-01-20 19:40 - 000000000 ____D C:\ProgramData\AVAST Software
2023-10-28 11:51 - 2022-11-13 18:25 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-28 11:51 - 2021-04-06 07:11 - 000000000 ____D C:\ProgramData\Synaptics
2023-10-28 11:51 - 2021-01-18 23:23 - 000000000 ____D C:\Program Files\CCleaner
2023-10-28 11:51 - 2021-01-18 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-28 11:51 - 2021-01-18 18:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-28 11:51 - 2020-07-28 14:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-28 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-28 11:50 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-28 11:32 - 2021-01-18 19:07 - 000000000 ____D C:\ProgramData\Lenovo
2023-10-28 11:31 - 2023-02-12 20:46 - 000000000 ____D C:\Users\Administrator\AppData\Local\Lenovo
2023-10-28 11:31 - 2021-01-19 02:13 - 000000000 ____D C:\WINDOWS\Lenovo
2023-10-28 11:31 - 2021-01-18 22:34 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\Lenovo
2023-10-28 11:31 - 2021-01-18 19:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-10-28 11:26 - 2021-10-27 16:29 - 000000000 ____D C:\AAA
2023-10-28 09:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-28 09:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-28 08:34 - 2022-07-17 09:10 - 000002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-28 08:34 - 2021-01-18 21:03 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-28 08:27 - 2023-06-20 16:49 - 000002400 _____ C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-28 08:27 - 2022-07-07 13:39 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:27 - 2021-01-18 22:39 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2756002567-295290169-1842266776-1001
2023-10-28 08:18 - 2022-11-08 08:43 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-10-27 11:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-27 11:02 - 2023-08-31 08:16 - 000002461 _____ C:\Users\vkubi_000\Desktop\Pracovní - Edge.lnk
2023-10-27 09:46 - 2021-01-21 17:18 - 000000000 ____D C:\Users\vkubi_000\AppData\Local\CrashDumps
2023-10-26 10:15 - 2023-01-20 10:15 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-26 10:15 - 2021-01-26 09:46 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-26 09:52 - 2021-01-26 09:44 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 09:52 - 2021-01-26 09:44 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-25 11:33 - 2022-12-22 09:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 11:33 - 2021-01-18 23:23 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-20 07:10 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-19 11:51 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-19 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-19 11:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-19 11:49 - 2021-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-19 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-19 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-19 11:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-19 10:53 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-19 10:52 - 2019-12-07 11:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-19 10:52 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-18 08:12 - 2021-01-18 19:09 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-18 07:50 - 2021-01-20 19:35 - 000000000 ____D C:\Program Files\WinRAR
2023-10-18 07:50 - 2020-05-06 21:55 - 000000000 ____D C:\Users\vkubi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-18 07:50 - 2019-02-12 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-10-13 13:16 - 2021-01-21 09:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 13:03 - 2021-01-21 09:19 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-09 11:18 - 2019-02-16 16:00 - 000000000 ____D C:\Users\vkubi_000\TapinRadio
2023-10-05 18:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-02 18:17 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-02 18:16 - 2021-01-22 11:33 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-02 18:15 - 2021-01-22 12:00 - 000559696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000708048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000297992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000275168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-02 18:15 - 2021-01-22 11:33 - 000039760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000950696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000392984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-02 18:14 - 2021-01-22 11:33 - 000240176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
==================== Files in the root of some directories ========
2021-02-14 20:53 - 2021-02-14 20:53 - 000000092 _____ () C:\Users\vkubi_000\AppData\Roaming\Control System_Settings.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
En
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
En
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
To má být fixlog? Ten vypadá takto: https://forum.viry.cz/viewtopic.php?p=1552450#p1552450 . Zkuste znovu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 28-10-2023
Ran by vlastimil (29-10-2023 07:36:17) Run:4
Running from C:\Users\vkubi_000\Desktop
Loaded Profiles: vlastimil & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"C:\Program Files\Windows Sidebar\sidebar.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{572389D4-59B0-41A1-AE9F-FCE0857B6932}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{572389D4-59B0-41A1-AE9F-FCE0857B6932}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70C912D5-130B-4EDF-9F7A-26FC0D60C7AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70C912D5-130B-4EDF-9F7A-26FC0D60C7AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C7476F53-EA93-474F-9666-C0FE720CEDB1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C7476F53-EA93-474F-9666-C0FE720CEDB1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E005D7D2-71D7-4DE7-B24D-5B567AE12532}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E005D7D2-71D7-4DE7-B24D-5B567AE12532}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3960F3F3-A7D2-47EB-8146-075B6F47C37E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3960F3F3-A7D2-47EB-8146-075B6F47C37E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{344A0C40-6D8F-4F7F-8D44-1C249973AFA0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{344A0C40-6D8F-4F7F-8D44-1C249973AFA0}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Office\Office Serviceability Manager => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office Serviceability Manager" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18113766 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 708825 B
Edge => 0 B
Chrome => 613437881 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3948 B
NetworkService => 3948 B
vkubi_000 => 190559057 B
Administrator => 190586071 B
DefaultAppPool => 190586071 B
RecycleBin => 89351150 B
EmptyTemp: => 1.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 29-10-2023 07:49:35)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 07:50:11 ====
Ran by vlastimil (29-10-2023 07:36:17) Run:4
Running from C:\Users\vkubi_000\Desktop
Loaded Profiles: vlastimil & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
ShortcutTarget: Sidebar853.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {572389D4-59B0-41A1-AE9F-FCE0857B6932} - \Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4 -> No File <==== ATTENTION
Task: {70C912D5-130B-4EDF-9F7A-26FC0D60C7AB} - \Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c -> No File <==== ATTENTION
Task: {C7476F53-EA93-474F-9666-C0FE720CEDB1} - \Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6 -> No File <==== ATTENTION
Task: {E005D7D2-71D7-4DE7-B24D-5B567AE12532} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9} - \Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0 -> No File <==== ATTENTION
Task: {3960F3F3-A7D2-47EB-8146-075B6F47C37E} - System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5} - System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-18] (Google LLC -> Google LLC)
Task: {344A0C40-6D8F-4F7F-8D44-1C249973AFA0} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (No File)
U1 aswbdisk; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"C:\Program Files\Windows Sidebar\sidebar.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
ask: {2B0E3F1B-7BE3-4732-AA9E-F2786CC3FE0B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D65397A-DCDA-4E37-8C2C-00CA4B7E14AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{572389D4-59B0-41A1-AE9F-FCE0857B6932}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{572389D4-59B0-41A1-AE9F-FCE0857B6932}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\5a7e5937-3efb-4a2b-aee3-f07e934d91f4" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70C912D5-130B-4EDF-9F7A-26FC0D60C7AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70C912D5-130B-4EDF-9F7A-26FC0D60C7AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e8450874-66cf-4a23-aee1-39d965512e1c" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C7476F53-EA93-474F-9666-C0FE720CEDB1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C7476F53-EA93-474F-9666-C0FE720CEDB1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\2d809c6d-3205-4d06-a4be-1aa3bebb77e6" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E005D7D2-71D7-4DE7-B24D-5B567AE12532}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E005D7D2-71D7-4DE7-B24D-5B567AE12532}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED97D0D8-3D71-4F75-B7B5-09A10AFEA8C9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\f580ea11-cfc9-4243-8918-7906a84565a0" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3960F3F3-A7D2-47EB-8146-075B6F47C37E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3960F3F3-A7D2-47EB-8146-075B6F47C37E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{B5F8E8CF-4093-4ACD-A1E5-74B09DD63303}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C56BDF9-3DBD-479A-8BC2-F4B710FC5FD5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{70EFF340-B32D-4913-B385-B1827B3FA31A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{344A0C40-6D8F-4F7F-8D44-1C249973AFA0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{344A0C40-6D8F-4F7F-8D44-1C249973AFA0}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Office\Office Serviceability Manager => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office Serviceability Manager" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18113766 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 708825 B
Edge => 0 B
Chrome => 613437881 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3948 B
NetworkService => 3948 B
vkubi_000 => 190559057 B
Administrator => 190586071 B
DefaultAppPool => 190586071 B
RecycleBin => 89351150 B
EmptyTemp: => 1.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 29-10-2023 07:49:35)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 07:50:11 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Smazáno. Zrychlil se chod?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
ano zrychlil se chod je to lepší
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Pokud nic dál nemáte, je to z mé strany vše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
ano děkuji moc mějte se hezky
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?