Zdravím!
V poslední době mi PC reaguje dost opožděně, pomalu (a stále něco) načítá. Prosím o radu.
Děkuji, Zdenek
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Ran by wow (administrator) on DESKTOP-89RL4UG (LENOVO 90F1001ECK) (17-11-2023 13:36:16)
Running from C:\Users\wow\Desktop\FRST64.exe
Loaded Profiles: wow
Platform: Microsoft Windows 10 Home Version 22H2 19045.3693 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvLaunch.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\83.0.2.0\crashpad_handler.exe
(C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe ->) (LITEON) [File not signed] C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\skdh8821.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvLaunch.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe <7>
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(services.exe ->) () [File not signed] C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotification.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3684_none_7dfc270e7c9a3a0b\TiWorker.exe
(svchost.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [374680 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\MountPoints2: {c238881e-3093-11e7-9bcb-b8aeed9e8c33} - "F:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-02] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.159\Installer\chrmstp.exe [2023-11-16] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\118.0.22847.89\Installer\chrmstp.exe [2023-10-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6782.183\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B848843F-F2B0-44F7-90EE-17C315CF1AE9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {EB70BB97-ADF6-4AA5-BEE1-DD9E4D2757C2} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5153176 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
Task: {376BF646-AAB3-4006-BEF8-63BEFDC4FF3A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3418472 2023-10-18] (Avast Software s.r.o. -> AVAST Software)
Task: {1F384BCA-F7BC-4900-8EC0-5EFF9A6E64A2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3418472 2023-10-18] (Avast Software s.r.o. -> AVAST Software)
Task: {BFF500AA-A1F8-4461-8B39-991B0538D9B0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {3604CD51-66DB-41D2-BE66-177777A8D7EF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-02] (Avast Software s.r.o. -> Avast Software)
Task: {D32679CA-202F-495E-BDC5-25DA16392DDA} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
Task: {A8440C5E-8D72-4D08-9A8C-9B1E29F496E5} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
Task: {A65DD19E-C8CE-4CF3-B193-BF2EDED66436} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2C1B179F-2F4F-4012-8EAD-7597A365CC84} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d6819acb-ee28-4e2b-98df-d42963409f9c" --version "6.17.10746" --silent
Task: {24B58E4E-49C8-4ABE-B1B3-3FF66E1F0832} - System32\Tasks\CCleanerSkipUAC - wow => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E} - System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
Task: {5BF78D4C-45AE-40DF-8DC6-DABC510E8542} - System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
Task: {0477F3B5-7BD9-4915-B799-5733351AD00A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-10] (HP Inc. -> HP Inc.)
Task: {B2940D65-C518-40F4-A879-CE4A2C35D1B1} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-10] (HP Inc. -> HP Inc.)
Task: {332BEADE-FA59-4DE0-A8AE-703E098EF9EE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-02] (LENOVO -> Lenovo)
Task: {2BD6E405-F770-4F43-9672-C6523E3C65A4} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D921ED68-211B-4E87-8CD1-D966195A8B45} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {C99C0562-5677-42F7-83BC-354C669C98D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4FCE1829-074E-459E-8DEB-D9328D10E00C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {01176B40-ACC6-48BF-B080-564E8E840886} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9EBF1347-9508-496D-A669-7BAAB763C98D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {73834553-0DBF-4D27-A86D-992C12446902} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
Task: {F27BA4E7-FD8E-47A2-A253-05B554EDC65B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-09] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {63E5695B-EC9F-4D7A-B35D-3BD78A9F2F78} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {0B027715-E8F3-471C-8E12-38A46BB1B152} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{39597aef-b25c-4b33-9f95-6ddc1c9a2f2a}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Profile: C:\Users\wow\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-15]
Edge StartupUrls: Default -> "hxxps://www.chess.com/club/czechoslovakia-team"
Edge Extension: (Edge relevant text changes) - C:\Users\wow\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-26]
FireFox:
========
FF DefaultProfile: py09br4x.default-1604058508666
FF ProfilePath: C:\Users\wow\AppData\Roaming\Mozilla\Firefox\Profiles\py09br4x.default-1604058508666 [2023-11-17]
FF Homepage: Mozilla\Firefox\Profiles\py09br4x.default-1604058508666 -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\py09br4x.default-1604058508666 -> hxxps://www.pinterest.ca; hxxps://www.youtube.com; hxxps://fly.copperblade.top
FF ProfilePath: C:\Users\wow\AppData\Roaming\KompoZer\Profiles\qhlhqfx9.default [2023-02-16]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-14] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR Profile: C:\Users\wow\AppData\Local\Google\Chrome\User Data\Default [2023-11-15]
CHR Extension: (Google Docs Offline) - C:\Users\wow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-10]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\wow\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-10-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\wow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9111960 2023-11-15] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [806296 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [839064 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\118.0.22847.89\elevation_service.exe [1880304 2023-10-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-04] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-09-30] (Mixbyte Inc -> Freemake)
S3 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-10] (HP Inc. -> HP Inc.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [619776 2015-01-15] (LENOVO -> Lenovo)
R2 Sks8821; C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe [137216 2010-05-04] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240688 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [393496 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 AswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [951312 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [710128 2023-11-14] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [181824 2019-12-27] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2017-05-04] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-17 12:22 - 2023-11-17 13:40 - 000024373 _____ C:\Users\wow\Desktop\FRST.txt
2023-11-17 12:19 - 2023-11-17 12:20 - 002383872 _____ (Farbar) C:\Users\wow\Desktop\FRST64.exe
2023-11-17 10:30 - 2023-11-17 10:30 - 000000000 ___HD C:\$WinREAgent
2023-11-09 13:18 - 2023-11-10 09:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-31 09:23 - 2023-10-31 09:23 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-17 13:44 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-17 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-17 13:43 - 2021-12-17 11:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-17 13:43 - 2017-05-04 21:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-17 13:39 - 2022-02-11 10:53 - 000000000 ____D C:\FRST
2023-11-17 13:37 - 2017-10-08 12:23 - 000000000 ____D C:\Users\wow\AppData\Local\AVAST Software
2023-11-17 13:36 - 2023-02-10 10:37 - 000000000 ___RD C:\Users\wow\Documents\CyberLink
2023-11-17 13:36 - 2018-02-20 19:31 - 000000000 ___RD C:\Users\wow\Documents\Scanned Documents
2023-11-17 13:36 - 2018-02-20 19:31 - 000000000 ___RD C:\Users\wow\Documents\Fax
2023-11-17 13:36 - 2017-12-08 14:29 - 000000000 ___RD C:\Users\wow\Documents\OnScreen Control
2023-11-17 13:36 - 2017-06-08 10:11 - 000000000 ___RD C:\Users\wow\Documents\FeedbackHub
2023-11-17 13:36 - 2017-05-04 19:02 - 000000000 ___RD C:\Users\wow\Documents\ChessBase
2023-11-17 13:36 - 2017-05-04 07:39 - 000000000 __SHD C:\Users\wow\IntelGraphicsProfiles
2023-11-17 13:36 - 2017-05-03 21:51 - 000000000 ___RD C:\Users\wow\Documents\ZPS14
2023-11-17 13:35 - 2023-05-17 07:44 - 000000297 _____ C:\Users\wow\Disk Google.lnk
2023-11-17 13:35 - 2020-08-27 11:04 - 000000000 ____D C:\Users\wow
2023-11-17 13:35 - 2017-05-04 07:39 - 000000000 ___SD C:\Users\wow\AppData\Roaming\Microsoft\Credentials
2023-11-17 13:34 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-17 13:33 - 2022-02-13 15:59 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-11-17 13:32 - 2020-08-27 20:33 - 000716748 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-17 13:32 - 2020-08-27 20:33 - 000144946 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-17 13:32 - 2020-08-27 11:16 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-17 13:32 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-11-17 13:29 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-17 13:27 - 2017-05-04 08:35 - 000000000 ____D C:\ProgramData\AVAST Software
2023-11-17 13:26 - 2020-08-27 11:00 - 000472136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-17 13:25 - 2020-08-27 11:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-17 13:25 - 2020-08-27 11:00 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-17 13:24 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-17 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-17 13:14 - 2020-08-27 20:33 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-17 13:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-17 13:13 - 2020-08-27 20:32 - 000000000 ____D C:\WINDOWS\system32\cs
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-17 13:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-17 13:12 - 2019-12-07 10:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-17 13:12 - 2019-12-07 10:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-17 13:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-17 13:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-11-17 13:09 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-17 13:07 - 2019-12-07 10:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-17 13:07 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-17 13:07 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-17 13:04 - 2020-08-27 11:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-17 12:19 - 2020-08-27 11:03 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-17 11:38 - 2022-02-10 11:24 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-17 11:33 - 2017-11-30 17:55 - 000000000 ____D C:\Users\wow\AppData\Local\Packages
2023-11-17 11:31 - 2017-05-03 21:34 - 000000000 ____D C:\Program Files\CCleaner
2023-11-17 11:21 - 2017-05-04 19:01 - 000000000 ____D C:\Users\wow\AppData\Local\CrashDumps
2023-11-17 10:21 - 2022-09-24 11:40 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-11-16 11:33 - 2022-09-24 11:40 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-11-16 11:33 - 2022-04-21 22:26 - 000003548 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}
2023-11-16 11:33 - 2022-04-21 22:26 - 000003324 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}
2023-11-16 11:33 - 2021-12-14 09:56 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3829197068-2955107618-1151059083-1001
2023-11-16 11:33 - 2021-08-20 10:18 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - wow
2023-11-16 11:33 - 2021-08-18 10:01 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-16 11:33 - 2021-05-17 11:09 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-16 11:33 - 2021-05-17 11:09 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-16 11:33 - 2020-08-27 11:22 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-16 11:33 - 2020-08-27 11:22 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3829197068-2955107618-1151059083-1001
2023-11-16 11:33 - 2020-08-27 11:22 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2023-11-16 11:22 - 2020-08-27 11:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-11-16 10:27 - 2017-05-04 10:49 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-16 10:27 - 2017-05-04 10:49 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-11-16 10:22 - 2022-10-16 09:10 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-11-16 10:17 - 2020-08-27 11:22 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-11-15 09:28 - 2017-05-04 10:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 09:17 - 2017-05-04 10:23 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-14 10:45 - 2017-05-04 20:58 - 000000000 ____D C:\Users\wow\AppData\Roaming\Microsoft\Excel
2023-11-14 10:37 - 2023-06-27 09:10 - 000002382 _____ C:\Users\wow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-14 10:33 - 2017-11-30 17:27 - 000710128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-11-13 10:18 - 2017-05-04 07:40 - 000000000 ____D C:\Users\wow\AppData\Local\Publishers
2023-11-12 10:12 - 2021-05-17 11:10 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-12 10:12 - 2021-05-17 11:10 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-11-12 09:39 - 2021-01-24 14:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-10 09:25 - 2017-05-04 18:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 18:37 - 2017-05-04 18:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-02 09:14 - 2021-09-14 20:19 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-02 09:14 - 2021-09-14 20:19 - 000002015 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-11-02 09:14 - 2021-09-14 20:19 - 000002015 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-11-02 09:14 - 2021-09-14 20:19 - 000002003 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-10-31 09:23 - 2020-10-27 08:56 - 000275280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-31 09:23 - 2020-04-02 11:56 - 000561888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-31 09:23 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-31 09:23 - 2019-01-18 19:23 - 000297984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-31 09:23 - 2019-01-18 19:23 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-31 09:23 - 2019-01-18 19:23 - 000031528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-10-31 09:23 - 2018-10-12 11:10 - 000039752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-31 09:23 - 2017-11-30 17:27 - 000951312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-31 09:23 - 2017-11-30 17:27 - 000319672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-31 09:23 - 2017-11-30 17:27 - 000240688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-10-31 09:23 - 2017-11-30 17:27 - 000105352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-31 09:23 - 2017-11-30 17:27 - 000080528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-31 09:22 - 2019-01-26 23:23 - 000393496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-26 18:08 - 2018-07-08 16:46 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-10-26 18:08 - 2018-07-08 16:46 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
==================== Files in the root of some directories ========
2023-07-26 10:07 - 2023-07-26 10:07 - 000000600 _____ () C:\Users\wow\AppData\Roaming\winscp.rnd
2021-03-06 16:24 - 2021-03-06 16:24 - 000000000 _____ () C:\Users\wow\AppData\Local\oobelibMkey.log
2021-10-15 10:12 - 2021-10-15 10:12 - 000000017 _____ () C:\Users\wow\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-11-2023 02
Ran by wow (17-11-2023 13:47:39)
Running from C:\Users\wow\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3693 (X64) (2020-08-27 10:22:50)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3829197068-2955107618-1151059083-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3829197068-2955107618-1151059083-503 - Limited - Disabled)
Guest (S-1-5-21-3829197068-2955107618-1151059083-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3829197068-2955107618-1151059083-504 - Limited - Disabled)
wow (S-1-5-21-3829197068-2955107618-1151059083-1001 - Administrator - Enabled) => C:\Users\wow
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7z Extractor (HKLM-x32\...\{FA71EF19-3822-44F1-B843-B84CA34266CB}_is1) (Version: - 7zextractor.com)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20380 - Adobe)
Adobe dreamweaver (HKLM\...\{F91C3A80-17BA-41E3-8288-A36778F03035}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Altap Salamander 3.03 (x86) (HKLM-x32\...\Altap Salamander 3.03 (x86)) (Version: 3.03 - ALTAP)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.10.6086 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 118.0.22847.89 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
BitTorrent (HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\BitTorrent) (Version: 7.11.0.46675 - BitTorrent Inc.)
calibre 64bit (HKLM\...\{920E3ABA-79B1-4194-A409-2B51E2DC61E9}) (Version: 6.25.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6623 - CDBurnerXP)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.5.0.6.1001 - Genesys Logic)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 83.0.2.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.159 - Google LLC)
HappyFoto DESIGNER 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{3D6D679B-3ECE-48DD-85D6-8ECE8D497080}) (Version: 11.0.0.1158 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{BCD55758-61DB-426D-BC56-72C9ADB2092F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{DD20EECC-5CAA-4658-B15D-2A5DCE686321}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{D2E7A6EE-AB1A-4D68-8E1C-FFE2B4B5429B}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4963 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
IrfanView 4.62 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.62 - Irfan Skiljan)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Rescue System (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.5015 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.5015 - CyberLink Corp.)
Lenovo Slim USB Keyboard (HKLM\...\{494D80C4-3557-4D73-A153-65FE4B3ECDC3}) (Version: 1.17 - Lenovo)
Manual (HKLM-x32\...\{693F92E5-37D1-46B7-A0D6-19A74A2FD0EC}) (Version: 1.00.0701 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.58 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.58 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\OneDriveSetup.exe) (Version: 23.221.1024.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24212 (HKLM\...\{F20396E5-D84E-3505-A7A8-7358F0155F6C}) (Version: 14.0.24212 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24212 (HKLM\...\{FAAD7243-0141-3987-AA2F-E56B20F80E41}) (Version: 14.0.24212 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 119.0.1 (x64 cs)) (Version: 119.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 1.39 - LG Electronics Inc)
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 10.1.505.2015 - Realtek)
Shredder 12 (HKLM-x32\...\{3892F602-F5D6-4B99-8F08-12EE6B01F66B}) (Version: 12.0.0 - ChessBase)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Windows Driver Package - Genesys Logic (GeneStor) USB (07/13/2015 4.5.0.6) (HKLM\...\AE2E6FAB44844413B4C6F53C908EACC8AFC838F0) (Version: 07/13/2015 4.5.0.6 - Genesys Logic)
Windows Driver Package - Intel Corporation (igfx) Display (07/17/2015 10.18.15.4256) (HKLM\...\00B7AF24A3F134555C104D6FD6BA2E998DF37957) (Version: 07/17/2015 10.18.15.4256 - Intel Corporation)
Windows Driver Package - Realtek (rt640x64) Net (05/05/2015 10.001.0505.2015) (HKLM\...\6A304520C2F25CD034E477A379C47308AA84A2DC) (Version: 05/05/2015 10.001.0505.2015 - Realtek)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Movie Maker 2016 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2videowin}}_is1) (Version: - videowinsoft.com)
xrecode II 1.0.0.231 (HKLM-x32\...\{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1) (Version: - )
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.3 - ZONER software)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-11-16] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_150.1.1140.0_x64__v10z8vjag6ke6 [2023-11-13] (HP Inc.)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2310.18.0_x64__k1h2ywk1493x8 [2023-11-09] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-05-04] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3829197068-2955107618-1151059083-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3829197068-2955107618-1151059083-1001_Classes\CLSID\{C78B6149-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files (x86)\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-31] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\83.0.2.0\drivefsext.dll [2023-11-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-10-31] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2009-04-07 18:16 - 2009-04-07 18:16 - 000061440 _____ (LITE-ON Corp.) [File not signed] C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\skhooks.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 12:04 - 2022-02-13 15:57 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\Control Panel\Desktop\\Wallpaper -> D:\Fotky\2022_05_14_HrubaSkala\P1210035.JPG
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_6F12923EB02AD11E91B5AF5FC2A0240C"
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{C0711B30-D3EA-4386-9F51-4CEF39293F80}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B4817637-7AF7-4747-BBA9-5A2D8BEBFF1F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{3E0DABE0-9F24-4D78-BA70-F1078169061C}C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{C67B52E9-E180-4A22-BC5B-D16E824E4486}C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{6E18ACE4-A7AB-4F16-99DC-EB75BEE3C474}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D826F392-DEBE-4E4D-BD2D-26A5FBD338C3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{51E6F166-45BF-4E73-B198-17F6D2E3E5C6}C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{B43F2FAB-D3EB-4A22-A0EF-223F46811C43}C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\wow\appdata\roaming\bittorrent\bittorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{4CA95690-EFB8-4BBF-91C0-1DFF79901928}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
FirewallRules: [{7C89660B-0081-43D1-B52A-5848B3CF00A6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
FirewallRules: [{AE11DEAE-66CF-4EE6-AFE3-8FEADAB5289C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CB2F99ED-8A52-4660-89E0-BA3A804F5531}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{38FA121C-B9D7-4E8D-8ACD-2F1EB048F8C0}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FE6367A7-4107-4220-A69C-3C10F353DB6E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4E1C05E8-2765-4BB6-A0FC-19D6903970EB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
07-10-2023 12:22:27 Scheduled Checkpoint
12-10-2023 08:18:31 Windows Modules Installer
13-10-2023 08:57:59 Windows Modules Installer
13-10-2023 09:17:20 Windows Modules Installer
13-10-2023 09:22:49 Windows Modules Installer
16-10-2023 09:13:14 Windows Modules Installer
29-10-2023 11:24:56 Windows Modules Installer
15-11-2023 11:53:37 Windows Modules Installer
17-11-2023 10:24:07 Windows Modules Installer
17-11-2023 11:08:34 Windows Modules Installer
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (11/17/2023 01:26:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5f742b96
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3693, časové razítko: 0x64ee7a9c
Kód výjimky: 0xe0434352
Posun chyby: 0x0013f932
ID chybujícího procesu: 0xd90
Čas spuštění chybující aplikace: 0x01da1951335ab912
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f2144056-fa3e-49dd-b0ce-48ab3021ceca
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/17/2023 01:26:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: FreemakeUtilsService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
at FreemakeUtilsService.Program.Main(System.String[])
Error: (11/17/2023 12:34:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 5.11.2023.2 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 3a28
Čas spuštění: 01da19484fc95913
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\wow\Desktop\FRST64.exe
ID hlášení: a2c19ca6-24f0-4ef4-a09a-6dba907e5501
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (11/17/2023 11:26:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 119.0.1.8710 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2654
Čas spuštění: 01da193855e8218a
Čas ukončení: 172
Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe
ID hlášení: 9d07ac51-4dc2-4daa-9508-1350aacd9d70
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (11/17/2023 11:20:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: EXCEL.EXE, verze: 12.0.6787.5000, časové razítko: 0x5ab54c89
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0x7db683b9
Kód výjimky: 0xc0000005
Posun chyby: 0x00074cb6
ID chybujícího procesu: 0x10bc
Čas spuštění chybující aplikace: 0x01da193e8c26659a
Cesta k chybující aplikaci: C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: 37679b61-4d27-464f-b345-340083c5219b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/17/2023 10:35:04 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (11/17/2023 10:21:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5f742b96
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xfaa05682
Kód výjimky: 0xe0434352
Posun chyby: 0x0013d982
ID chybujícího procesu: 0xd98
Čas spuštění chybující aplikace: 0x01da1937770c9006
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f7139fa2-aa78-4876-a684-9c2410ba63b5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/17/2023 10:21:37 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: FreemakeUtilsService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
at FreemakeUtilsService.Program.Main(System.String[])
System errors:
=============
Error: (11/17/2023 01:35:46 PM) (Source: googledrivefs31092) (EventID: 2) (User: )
Description: The driver version of the disk does not match.
Error: (11/17/2023 01:26:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Freemake Improver neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/17/2023 01:26:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Freemake Improver bylo dosaženo časového limitu (45000 ms).
Error: (11/17/2023 01:23:35 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.
Error: (11/17/2023 01:23:03 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba aswbIDSAgent se po přijetí pokynu pro vypnutí neukončila správně.
Error: (11/17/2023 01:19:41 PM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikátoru CLSID {752073A1-23F2-4396-85F0-8FDB879ED0ED} vypršel časový limit během čekání na zastavení služby TrustedInstaller.
Error: (11/17/2023 12:15:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Skdaemon Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/17/2023 10:26:20 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service přestala během spouštění reagovat.
CodeIntegrity:
===============
Date: 2023-11-17 13:27:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2023-11-17 13:27:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO M0KKT17A 08/20/2015
Motherboard: LENOVO SHARKBAY
Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 71%
Total physical RAM: 4005.27 MB
Available physical RAM: 1125.92 MB
Total Virtual: 6693.27 MB
Available Virtual: 3769.12 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:411.39 GB) (Free:316.28 GB) (Model: ST1000DM003-1ER162) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Back) (Fixed) (Total:488.28 GB) (Free:404.04 GB) (Model: ST1000DM003-1ER162) NTFS
Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:9.74 GB) (Model: ST1000DM003-1ER162) FAT32
Drive l: (KINGSTON) (Removable) (Total:28.85 GB) (Free:24.42 GB) FAT32
\\?\Volume{5c54ca0b-3d03-42ee-bf86-f01bfb318e30}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.38 GB) NTFS
\\?\Volume{5e2dc3bb-2067-4d79-81ea-aa2a9ec717e1}\ (LENOVO_PART) (Fixed) (Total:30 GB) (Free:17.25 GB) NTFS
\\?\Volume{d4fd223c-2cf9-4313-a8e0-2b06e7cec4a5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E7B780F0)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 28.9 GB) (Disk ID: 77E40D7F)
Partition 1: (Active) - (Size=28.9 GB) - (Type=FAT32)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu (nestandartní chování PC)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118278
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu (nestandartní chování PC)
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
lozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu (nestandartní chování PC)
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-18-2023
# Duration: 00:00:44
# OS: Windows 10 (Build 19045.3693)
# Scanned: 32107
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [1950 octets] - [15/10/2020 11:56:14]
AdwCleaner[C00].txt - [2028 octets] - [15/10/2020 11:57:01]
AdwCleaner[S01].txt - [1528 octets] - [20/10/2020 22:55:22]
AdwCleaner[S02].txt - [1589 octets] - [01/11/2020 09:46:33]
AdwCleaner[S03].txt - [1650 octets] - [01/11/2020 09:47:41]
AdwCleaner[S04].txt - [1711 octets] - [01/11/2020 09:48:19]
AdwCleaner[S05].txt - [1772 octets] - [15/01/2021 12:09:59]
AdwCleaner[S06].txt - [1833 octets] - [15/01/2021 12:11:51]
AdwCleaner[S07].txt - [1893 octets] - [15/02/2021 14:01:22]
AdwCleaner[S08].txt - [1955 octets] - [15/04/2021 09:14:54]
AdwCleaner[S09].txt - [2016 octets] - [15/04/2021 09:16:04]
AdwCleaner[S10].txt - [2077 octets] - [19/05/2021 11:08:25]
AdwCleaner[S11].txt - [2138 octets] - [19/05/2021 11:09:37]
AdwCleaner[S12].txt - [2199 octets] - [19/05/2021 11:11:19]
AdwCleaner[S13].txt - [2260 octets] - [19/05/2021 11:11:58]
AdwCleaner[S14].txt - [2321 octets] - [13/06/2021 13:31:41]
AdwCleaner[S15].txt - [2382 octets] - [12/09/2021 13:16:54]
AdwCleaner[S16].txt - [2443 octets] - [12/09/2021 13:18:24]
AdwCleaner[S17].txt - [2504 octets] - [17/11/2021 11:33:05]
AdwCleaner[S18].txt - [2565 octets] - [17/11/2021 11:33:21]
AdwCleaner[C18].txt - [2755 octets] - [17/11/2021 11:33:50]
AdwCleaner[S19].txt - [2687 octets] - [18/11/2021 11:34:09]
AdwCleaner[S20].txt - [2748 octets] - [05/02/2022 00:14:40]
AdwCleaner[S21].txt - [2809 octets] - [05/02/2022 00:15:18]
AdwCleaner[S22].txt - [2870 octets] - [13/02/2022 10:07:58]
AdwCleaner[C22].txt - [3060 octets] - [13/02/2022 10:09:02]
AdwCleaner[S23].txt - [2992 octets] - [18/04/2022 10:35:15]
AdwCleaner[C23].txt - [3182 octets] - [18/04/2022 10:35:45]
AdwCleaner[S24].txt - [3114 octets] - [01/07/2022 09:48:50]
AdwCleaner[C24].txt - [3304 octets] - [01/07/2022 09:49:26]
AdwCleaner[S25].txt - [3250 octets] - [28/09/2022 13:15:38]
AdwCleaner[C25].txt - [3440 octets] - [28/09/2022 13:16:22]
AdwCleaner[S26].txt - [3372 octets] - [16/10/2022 11:30:30]
AdwCleaner[C26].txt - [3562 octets] - [16/10/2022 11:30:41]
AdwCleaner[S27].txt - [3494 octets] - [16/12/2022 12:09:53]
AdwCleaner[C27].txt - [3684 octets] - [16/12/2022 12:10:54]
AdwCleaner[S28].txt - [3616 octets] - [16/01/2023 11:51:53]
AdwCleaner[C28].txt - [3806 octets] - [16/01/2023 11:53:48]
AdwCleaner[S29].txt - [3738 octets] - [17/01/2023 21:52:08]
AdwCleaner[C29].txt - [3928 octets] - [17/01/2023 21:52:44]
AdwCleaner[S30].txt - [3860 octets] - [17/02/2023 13:25:22]
AdwCleaner[C30].txt - [4050 octets] - [17/02/2023 13:26:00]
AdwCleaner[S31].txt - [3982 octets] - [05/04/2023 10:42:01]
AdwCleaner[C31].txt - [4172 octets] - [05/04/2023 10:44:39]
AdwCleaner[S32].txt - [4104 octets] - [14/04/2023 13:57:37]
AdwCleaner[S33].txt - [4165 octets] - [02/05/2023 10:55:36]
AdwCleaner[S34].txt - [4226 octets] - [03/07/2023 10:37:11]
AdwCleaner[S35].txt - [4287 octets] - [03/07/2023 10:37:46]
AdwCleaner[S36].txt - [4348 octets] - [11/08/2023 10:54:31]
AdwCleaner[S37].txt - [4409 octets] - [15/09/2023 09:53:59]
AdwCleaner[C37].txt - [4599 octets] - [15/09/2023 09:54:25]
AdwCleaner[S38].txt - [4531 octets] - [13/10/2023 12:34:00]
AdwCleaner[S39].txt - [4592 octets] - [10/11/2023 10:54:18]
AdwCleaner[C39].txt - [4782 octets] - [10/11/2023 10:54:40]
AdwCleaner[S40].txt - [4714 octets] - [17/11/2023 12:14:37]
AdwCleaner[S41].txt - [4775 octets] - [17/11/2023 12:15:10]
AdwCleaner[C41].txt - [4965 octets] - [17/11/2023 12:15:45]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S42].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-18-2023
# Duration: 00:00:44
# OS: Windows 10 (Build 19045.3693)
# Scanned: 32107
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [1950 octets] - [15/10/2020 11:56:14]
AdwCleaner[C00].txt - [2028 octets] - [15/10/2020 11:57:01]
AdwCleaner[S01].txt - [1528 octets] - [20/10/2020 22:55:22]
AdwCleaner[S02].txt - [1589 octets] - [01/11/2020 09:46:33]
AdwCleaner[S03].txt - [1650 octets] - [01/11/2020 09:47:41]
AdwCleaner[S04].txt - [1711 octets] - [01/11/2020 09:48:19]
AdwCleaner[S05].txt - [1772 octets] - [15/01/2021 12:09:59]
AdwCleaner[S06].txt - [1833 octets] - [15/01/2021 12:11:51]
AdwCleaner[S07].txt - [1893 octets] - [15/02/2021 14:01:22]
AdwCleaner[S08].txt - [1955 octets] - [15/04/2021 09:14:54]
AdwCleaner[S09].txt - [2016 octets] - [15/04/2021 09:16:04]
AdwCleaner[S10].txt - [2077 octets] - [19/05/2021 11:08:25]
AdwCleaner[S11].txt - [2138 octets] - [19/05/2021 11:09:37]
AdwCleaner[S12].txt - [2199 octets] - [19/05/2021 11:11:19]
AdwCleaner[S13].txt - [2260 octets] - [19/05/2021 11:11:58]
AdwCleaner[S14].txt - [2321 octets] - [13/06/2021 13:31:41]
AdwCleaner[S15].txt - [2382 octets] - [12/09/2021 13:16:54]
AdwCleaner[S16].txt - [2443 octets] - [12/09/2021 13:18:24]
AdwCleaner[S17].txt - [2504 octets] - [17/11/2021 11:33:05]
AdwCleaner[S18].txt - [2565 octets] - [17/11/2021 11:33:21]
AdwCleaner[C18].txt - [2755 octets] - [17/11/2021 11:33:50]
AdwCleaner[S19].txt - [2687 octets] - [18/11/2021 11:34:09]
AdwCleaner[S20].txt - [2748 octets] - [05/02/2022 00:14:40]
AdwCleaner[S21].txt - [2809 octets] - [05/02/2022 00:15:18]
AdwCleaner[S22].txt - [2870 octets] - [13/02/2022 10:07:58]
AdwCleaner[C22].txt - [3060 octets] - [13/02/2022 10:09:02]
AdwCleaner[S23].txt - [2992 octets] - [18/04/2022 10:35:15]
AdwCleaner[C23].txt - [3182 octets] - [18/04/2022 10:35:45]
AdwCleaner[S24].txt - [3114 octets] - [01/07/2022 09:48:50]
AdwCleaner[C24].txt - [3304 octets] - [01/07/2022 09:49:26]
AdwCleaner[S25].txt - [3250 octets] - [28/09/2022 13:15:38]
AdwCleaner[C25].txt - [3440 octets] - [28/09/2022 13:16:22]
AdwCleaner[S26].txt - [3372 octets] - [16/10/2022 11:30:30]
AdwCleaner[C26].txt - [3562 octets] - [16/10/2022 11:30:41]
AdwCleaner[S27].txt - [3494 octets] - [16/12/2022 12:09:53]
AdwCleaner[C27].txt - [3684 octets] - [16/12/2022 12:10:54]
AdwCleaner[S28].txt - [3616 octets] - [16/01/2023 11:51:53]
AdwCleaner[C28].txt - [3806 octets] - [16/01/2023 11:53:48]
AdwCleaner[S29].txt - [3738 octets] - [17/01/2023 21:52:08]
AdwCleaner[C29].txt - [3928 octets] - [17/01/2023 21:52:44]
AdwCleaner[S30].txt - [3860 octets] - [17/02/2023 13:25:22]
AdwCleaner[C30].txt - [4050 octets] - [17/02/2023 13:26:00]
AdwCleaner[S31].txt - [3982 octets] - [05/04/2023 10:42:01]
AdwCleaner[C31].txt - [4172 octets] - [05/04/2023 10:44:39]
AdwCleaner[S32].txt - [4104 octets] - [14/04/2023 13:57:37]
AdwCleaner[S33].txt - [4165 octets] - [02/05/2023 10:55:36]
AdwCleaner[S34].txt - [4226 octets] - [03/07/2023 10:37:11]
AdwCleaner[S35].txt - [4287 octets] - [03/07/2023 10:37:46]
AdwCleaner[S36].txt - [4348 octets] - [11/08/2023 10:54:31]
AdwCleaner[S37].txt - [4409 octets] - [15/09/2023 09:53:59]
AdwCleaner[C37].txt - [4599 octets] - [15/09/2023 09:54:25]
AdwCleaner[S38].txt - [4531 octets] - [13/10/2023 12:34:00]
AdwCleaner[S39].txt - [4592 octets] - [10/11/2023 10:54:18]
AdwCleaner[C39].txt - [4782 octets] - [10/11/2023 10:54:40]
AdwCleaner[S40].txt - [4714 octets] - [17/11/2023 12:14:37]
AdwCleaner[S41].txt - [4775 octets] - [17/11/2023 12:15:10]
AdwCleaner[C41].txt - [4965 octets] - [17/11/2023 12:15:45]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S42].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118278
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu (nestandartní chování PC)
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\MountPoints2: {c238881e-3093-11e7-9bcb-b8aeed9e8c33} - "F:\WD Drive Unlock.exe" autoplay=true
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {BFF500AA-A1F8-4461-8B39-991B0538D9B0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E} - System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
Task: {5BF78D4C-45AE-40DF-8DC6-DABC510E8542} - System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu (nestandartní chování PC)
Fix result of Farbar Recovery Scan Tool (x64) Version: 05-11-2023 02
Ran by wow (18-11-2023 12:42:21) Run:2
Running from C:\Users\wow\Desktop
Loaded Profiles: wow
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\MountPoints2: {c238881e-3093-11e7-9bcb-b8aeed9e8c33} - "F:\WD Drive Unlock.exe" autoplay=true
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {BFF500AA-A1F8-4461-8B39-991B0538D9B0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E} - System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
Task: {5BF78D4C-45AE-40DF-8DC6-DABC510E8542} - System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c238881e-3093-11e7-9bcb-b8aeed9e8c33} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{BFF500AA-A1F8-4461-8B39-991B0538D9B0} => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFF500AA-A1F8-4461-8B39-991B0538D9B0} => removed successfully
C:\WINDOWS\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5BF78D4C-45AE-40DF-8DC6-DABC510E8542}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5BF78D4C-45AE-40DF-8DC6-DABC510E8542}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20084216 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => -15191821 B
Edge => 0 B
Chrome => 363744 B
Firefox => 206823379 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 4 B
systemprofile32 => 4 B
LocalService => 15652 B
NetworkService => 15652 B
wow => 73445901 B
RecycleBin => 13559344 B
EmptyTemp: => 299.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:43:27 ====
Ran by wow (18-11-2023 12:42:21) Run:2
Running from C:\Users\wow\Desktop
Loaded Profiles: wow
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\...\MountPoints2: {c238881e-3093-11e7-9bcb-b8aeed9e8c33} - "F:\WD Drive Unlock.exe" autoplay=true
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {BFF500AA-A1F8-4461-8B39-991B0538D9B0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E} - System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
Task: {5BF78D4C-45AE-40DF-8DC6-DABC510E8542} - System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-04] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-3829197068-2955107618-1151059083-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c238881e-3093-11e7-9bcb-b8aeed9e8c33} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{BFF500AA-A1F8-4461-8B39-991B0538D9B0} => removed successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFF500AA-A1F8-4461-8B39-991B0538D9B0} => removed successfully
C:\WINDOWS\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C9C2B5B-2D0F-444E-A9FE-0566CB3ED37E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5BF78D4C-45AE-40DF-8DC6-DABC510E8542}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5BF78D4C-45AE-40DF-8DC6-DABC510E8542}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{9B09EE27-AE83-41B3-849C-FC5CCE24B8AE}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{6A1266BD-7A61-4115-9459-793E7A0EBD24}" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20084216 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => -15191821 B
Edge => 0 B
Chrome => 363744 B
Firefox => 206823379 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 4 B
systemprofile32 => 4 B
LocalService => 15652 B
NetworkService => 15652 B
wow => 73445901 B
RecycleBin => 13559344 B
EmptyTemp: => 299.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:43:27 ====
-
Rudy
- Site Admin
- Příspěvky: 118278
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu (nestandartní chování PC)
Smazáno. Zlepšil se stav?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu (nestandartní chování PC)
Určitě zlepšil. Nejen při provozu, ale už i při spuštění.
Děkuji, super! Zdenek
Děkuji, super! Zdenek
-
Rudy
- Site Admin
- Příspěvky: 118278
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu (nestandartní chování PC)
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?