VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o kontrolu logu, velmi pomalé první načítání

https://forum.viry.cz:443/viewtopic.php?t=159642

Stránka 1 z 1

prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 09 čer 2024 16:34
od pikoslav
Dobrý den,
systém již něco pamatuje, ale donedávna slušně fungoval i s Win7. V poslední době trvá velmi dlouho první načtení a při běžné práci s emailem se občas objeví upozornění, že "Vaše připojení není soukromé" a nechce mě to pustit dál. Bojím se, že jsem chytil nějakou havěť. Děkuji za kontrolu logu níže.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenek at 2024-06-09 17:28:55
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 58 GB (13%) free of 431 GB
Total RAM: 2009 MB (14% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:29:29, on 9.6.2024
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19400)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Zdenek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Služba Avast Browser Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Gen Digital Inc. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - Gen Digital Inc. - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: Služba Avast Browser Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\elevation_service.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\109.0.5414.120\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Unknown owner - C:\windows\system32\SAsrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9660 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 2856208
\??\C:\windows\system32\conhost.exe "1224101208442761884443600400247730779-1250038512-18151927052367463052058237353
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe" /runassvc
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\windows\System32\spoolsv.exe
"taskhost.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\windows\system32\Dwm.exe"
WLIDSvcM.exe 2068
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="6A5E43A7-592B-45E3-3CDE-5C1CBAB4BD2E" /binpath="C:\Program Files\AVAST Software\Avast" /logpath="C:\ProgramData\AVAST Software\Avast\log"
"C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
AvastUI.exe /nogui
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Zdenek\AppData\Local\AVAST Software\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=Avast --annotation=ver=109.0.24252.120 --initial-client-data=0xc4,0xc8,0xcc,0x98,0xd0,0x7feea926b78,0x7feea926b88,0x7feea926b98
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=gpu-process --start-stack-profiler --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1200 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:2
"C:\Program Files\AVAST Software\Avast\aswidsagent.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --first-renderer-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=9 --mojo-platform-channel-handle=2212 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=8 --mojo-platform-channel-handle=2248 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --mojo-platform-channel-handle=2636 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --start-stack-profiler --mojo-platform-channel-handle=3260 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:8
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=3276 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:8
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --mojo-platform-channel-handle=2604 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=7 --mojo-platform-channel-handle=3104 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\system32\cmd.exe /d /c "C:\Program Files\AVAST Software\Avast\AvastNM.exe" chrome-extension://lhnnoklckomcfdlknmjaenoodlpfdclc/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.1e7f991f33eb1518 > \\.\pipe\chrome.nativeMessaging.out.1e7f991f33eb1518
\??\C:\windows\system32\conhost.exe "-363233624-709315021-276259040686121741-9920365141488573593-11668700082089926329
"C:\Program Files\AVAST Software\Avast\AvastNM.exe" chrome-extension://lhnnoklckomcfdlknmjaenoodlpfdclc/ --parent-window=0
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8208 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8492 /prefetch:8
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8252,9243253506578547656,15955449499275135552,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0) (Windows 6.1)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Zdenek\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8456 /prefetch:8
"taskhost.exe"
C:\windows\system32\svchost.exe -k SDRSVC
Explorer.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.0.1370986212\1144049900" -parentBuildID 20230522134052 -prefsHandle 1164 -prefMapHandle 1156 -prefsLen 37359 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {8476f2bc-328f-4605-ba47-af4e9f39e9af} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1264 4bd0e58 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.1.2031958405\1002409439" -parentBuildID 20230522134052 -prefsHandle 1472 -prefMapHandle 1468 -prefsLen 37404 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {3b1bf146-8e1d-49f4-bac0-41a730c42f7a} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1484 4bcf958 socket
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.2.1490208242\1424795691" -childID 1 -isForBrowser -prefsHandle 2040 -prefMapHandle 2072 -prefsLen 38639 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {89b28aa2-9b24-4a0f-8b56-d2d18427a3d6} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2464 1ab0a158 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.3.1385731762\205227522" -childID 2 -isForBrowser -prefsHandle 3396 -prefMapHandle 3392 -prefsLen 44084 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {5cbce883-3b84-49ed-8a63-9dab1311b2f9} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 3408 1f9ec858 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.8.1896042790\651714574" -childID 7 -isForBrowser -prefsHandle 8572 -prefMapHandle 8476 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {1d5511cb-7001-4d9c-b898-dff47e523d5d} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 1712 1fca7e58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.9.621044328\1990020320" -childID 8 -isForBrowser -prefsHandle 3156 -prefMapHandle 1948 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {7710ac45-421f-4e4b-84a3-a4d8f3189820} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2208 1fcb2d58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.10.2092199900\1086134589" -childID 9 -isForBrowser -prefsHandle 240 -prefMapHandle 4324 -prefsLen 34789 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {10f38297-1c19-409c-bd77-a2a92279bf5e} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 4128 2311ab58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.11.1339725862\2105362703" -parentBuildID 20230522134052 -prefsHandle 3392 -prefMapHandle 8080 -prefsLen 44121 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {30cb31c8-6bf8-4b94-8200-e0698a867b78} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 2184 2076b758 rdd
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.12.213810479\780728235" -parentBuildID 20230522134052 -sandboxingKind 1 -prefsHandle 7760 -prefMapHandle 8304 -prefsLen 44121 -prefMapSize 252889 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {f1c87bfe-f46b-40de-8002-e2355243c99c} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 3600 2076ba58 utility
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.13.1421183012\724564375" -childID 10 -isForBrowser -prefsHandle 8004 -prefMapHandle 7632 -prefsLen 34870 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {fc7a35a2-3e84-4fdf-931c-02f220b10ac7} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 7588 2164ee58 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6988.14.1031404963\411620584" -childID 11 -isForBrowser -prefsHandle 7604 -prefMapHandle 7592 -prefsLen 34870 -prefMapSize 252889 -jsInitHandle 996 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {a9f9a4ad-c8b2-4d11-80db-480bbe97709d} 6988 "\\.\pipe\gecko-crash-server-pipe.6988" 7892 2164f158 tab

"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --disable-gpu-compositing --lang=cs --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=192 --mojo-platform-channel-handle=6996 --field-trial-handle=1208,i,4735235693626656380,5319149955027171017,131072 /prefetch:1
"C:\Users\Zdenek\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.startup.homepage" - "https://user.centrum.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2009-09-18 387608]
"Persistence"=C:\windows\system32\igfxpers.exe [2009-09-18 365592]
"AvastUI.exe"=C:\Program Fi [2014-10-01 6703656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F"=C:\Program Fi [2014-10-01 6703656]
"com.squirrel.Teams.Teams"=C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe [2023-11-10 2589872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Fi [2014-10-01 6703656]
"IAStorIcon"=C:\Program Fi [2014-10-01 6703656]
"IJNetworkScannerSelectorEX"=C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2009-07-03 258048]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Fi [2014-10-01 6703656]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"VIDC.FPS1"=frapsv64.dll
"vidc.ffds"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2024-06-04 08:24:07 ----A---- C:\windows\system32\aswBoot.exe
2024-06-04 08:23:51 ----A---- C:\windows\system32\drivers\aswStm.sys

======List of files/folders modified in the last 1 month======

2024-06-09 17:29:21 ----D---- C:\windows\system32\drivers\etc
2024-06-09 17:29:20 ----D---- C:\Program Files\trend micro
2024-06-09 17:24:24 ----D---- C:\windows\temp
2024-06-09 17:07:19 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-09 16:41:30 ----D---- C:\windows\System32
2024-06-09 16:41:29 ----D---- C:\windows\inf
2024-06-09 16:41:29 ----A---- C:\windows\system32\PerfStringBackup.INI
2024-06-09 16:40:05 ----D---- C:\Program Files (x86)\Google
2024-06-09 09:18:20 ----D---- C:\windows\system32\config
2024-06-09 08:43:50 ----D---- C:\ProgramData\AVAST Software
2024-06-04 18:08:20 ----D---- C:\windows\system32\drivers
2024-06-03 07:15:58 ----D---- C:\windows\Prefetch
2024-06-01 12:26:11 ----SHD---- C:\System Volume Information
2024-05-16 22:59:06 ----SHD---- C:\windows\Installer
2024-05-16 08:12:24 ----D---- C:\windows\SysWOW64

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\windows\system32\drivers\aswArDisk.sys [2024-06-04 20424]
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsh.sys [2024-06-04 292808]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniv.sys [2024-06-04 84536]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2024-06-04 69168]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2024-06-04 306744]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 iaStorA;iaStorA; C:\windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2024-06-04 229832]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdriver.sys [2024-06-04 380360]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2024-06-04 28728]
R1 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2024-06-04 269768]
R1 aswNetHub;aswNetHub; C:\windows\system32\drivers\aswNetHub.sys [2024-06-04 548808]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2024-06-04 97848]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2024-06-04 939976]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2024-06-04 698424]
R1 funfrm;funfrm; C:\windows\system32\drivers\funfrm.sys [2010-11-27 58896]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2024-06-04 203832]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-05-19 26128]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2010-04-22 260216]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\windows\system32\DRIVERS\aswNetNd6.sys [2023-04-11 23472]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\windows\system32\DRIVERS\bcmwl664.sys [2010-10-28 4716608]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2010-01-18 717368]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-07-03 7342432]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 vm332avs;Lenovo Camera2; C:\windows\System32\Drivers\vm332avs.sys [2010-04-20 229488]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2019-02-07 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-10 270848]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 Ser2pl;Prolific Serial port driver; C:\windows\system32\DRIVERS\ser2pl64.sys [2010-03-12 97280]
S3 trufos;trufos; C:\windows\system32\drivers\trufos.sys [2017-02-17 350160]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Fi [2014-10-01 6703656]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Fi [2014-10-01 6703656]
R2 avast! Antivirus;Avast Antivirus; C:\Program Fi [2014-10-01 6703656]
R2 avast! Tools;Avast Tools; C:\Program Fi [2014-10-01 6703656]
R2 AvastWscReporter;AvastWscReporter; C:\Program Fi [2014-10-01 6703656]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Fi [2014-10-01 6703656]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Fi [2014-10-01 6703656]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Fi [2014-10-01 6703656]
S2 avast;Služba Avast Browser Update (avast); C:\Program Fi [2014-10-01 6703656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Fi [2014-10-01 6703656]
S2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe [2010-03-25 445496]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Fi [2014-10-01 6703656]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Fi [2014-10-01 6703656]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Fi [2014-10-01 6703656]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Fi [2014-10-01 6703656]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2019-06-18 116224]
S3 IGRS;IGRS; C:\Program Fi [2014-10-01 6703656]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Fi [2014-10-01 6703656]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Fi [2014-10-01 6703656]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Fi [2014-10-01 6703656]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Fi [2014-10-01 6703656]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Fi [2014-10-01 6703656]
S3 ose;Office Source Engine; C:\Program Fi [2014-10-01 6703656]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-06-02 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Fi [2014-10-01 6703656]

-----------------EOF-----------------

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 09 čer 2024 16:52
od Rudy
Zdravím!
Poprosím o log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . Tento soft má již své nejlepší časy za sebou. FRST je přesnější. Děkuji.

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 09 čer 2024 23:56
od pikoslav
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.06.2024
Ran by Zdenek (administrator) on ZDENEK-PC (LENOVO 20023) (09-06-2024 23:31:08)
Running from C:\Users\Zdenek\Desktop\FRST64.exe
Loaded Profiles: Zdenek
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <11>
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastNM.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <12>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [423832 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [AvastBrowserAutoLaunch_0892B3B9B109E3739D71A5E0D490559F] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Zdenek\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-11-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP230 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB5.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series: C:\windows\system32\CNMLMB5.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\Installer\chrmstp.exe [2024-03-08] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {9A45BB32-B1B0-4EFE-A6D3-B6F6116E27F0} - System32\Tasks\{19F21764-B6E2-4B4E-8E95-3CAC3B784A73} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\gpam-3-0-0-2.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C105C2C7-5F66-4B67-9398-3619D15FEA68} - System32\Tasks\{33A5DEF2-E611-48BB-8968-6867145B2073} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {7208966C-A740-42FC-890F-01BA8DE7AF6B} - System32\Tasks\{AE63F4C6-4E27-4519-BD47-445AEA29F6CC} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2\CamStudioSetup_v2.7.2.exe -d C:\Users\Zdenek\Downloads\CamStudioSetup_v2.7.2
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {4F41EE8F-17DA-4B1D-B28E-44BC42DE962B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {76A59843-8C25-4C3A-9B9E-0C952D05322A} - System32\Tasks\Adobe online aktualizační program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {9304C00C-1BDC-42A9-9CC1-658017417A36} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE27EC4-CDC9-42DF-A213-BD2394B786B3} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3257832 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
Task: {F7DD996B-FDD2-431D-84E4-5732B972DCC8} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5079448 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {8A54CF58-383D-47D2-8397-59F3A757BDC4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup
Task: {C4E122C0-C727-4AF6-9C0D-6B516E934138} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {99A8FAB8-55AD-4F23-8BB9-F7BDFF3A4F1B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {3915A981-010A-441A-8760-C742FB2FA5C0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AB35F7D7-0447-4FC2-932D-CF23847027FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-08] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1F18F7D3-9B5F-4C7E-867A-2C090929D7BF}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\13233343: [DhcpNameServer] 84.16.104.129 84.16.96.2
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\35F435C41402D20267F6C6E616: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\94E6475627E65647: [DhcpDomain] Belkin
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\A54554D2451443733355: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\B6566796E6F577: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{661CB96C-3947-4168-B7EB-4AD1952D58E7}\D41627479602960586F6E656: [DhcpNameServer] 172.20.10.1

FireFox:
========
FF DefaultProfile: fvt2dzgi.default
FF ProfilePath: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default [2024-06-09]
FF Homepage: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://user.centrum.cz/
FF Notifications: Mozilla\Firefox\Profiles\fvt2dzgi.default -> hxxps://www.lynxbroker.cz
FF Extension: (No Name) - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\fvt2dzgi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-06-01]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2010-11-24] (Google) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-14] (VideoLAN) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-05-12] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-535601518-2141012399-1713020722-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Zdenek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default [2024-06-09]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://email.seznam.cz/"
CHR Extension: (Dokumenty Google offline) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9026968 2024-06-04] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [761752 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1198488 2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.24252.120\elevation_service.exe [1802824 2024-03-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [20424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [229832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [380360 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [292808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [84536 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [28728 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [269768 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [548808 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [97848 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [69168 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [939976 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [698424 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [203832 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [306744 2024-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [79376 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
R1 funfrm; C:\Windows\System32\Drivers\funfrm.sys [58896 2010-11-27] (Lenovo (Beijing) Limited -> )
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2pl; C:\windows\System32\DRIVERS\ser2pl64.sys [97280 2010-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 trufos; C:\windows\System32\drivers\trufos.sys [350160 2017-02-17] (Bitdefender SRL -> BitDefender S.R.L.)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 vm332avs; C:\windows\System32\Drivers\vm332avs.sys [229488 2010-04-20] (Bison Electronics Inc. -> Vimicro Corporation)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11280 2009-07-16] (Lenovo (Beijing) Limited -> Lenovo)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-06-09 23:31 - 2024-06-09 23:42 - 000024164 _____ C:\Users\Zdenek\Desktop\FRST.txt
2024-06-09 23:28 - 2024-06-09 23:37 - 000000000 ____D C:\FRST
2024-06-09 23:23 - 2024-06-09 23:23 - 002395136 _____ (Farbar) C:\Users\Zdenek\Desktop\FRST64.exe
2024-06-09 16:42 - 2024-06-09 16:42 - 000040052 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9718279066.pdf
2024-06-09 16:38 - 2024-06-09 16:39 - 000325933 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9703852673.pdf
2024-06-09 09:15 - 2021-06-08 00:46 - 001572556 _____ C:\Users\Zdenek\Desktop\Datart_Lanskroun_Dvorakova_09062024_audio.WMA
2024-06-09 09:15 - 2021-06-06 16:56 - 001923044 _____ C:\Users\Zdenek\Desktop\Sefir_Usti nad Orlici_240607_audio.WMA
2024-06-08 23:29 - 2024-06-08 23:29 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ (1).pdf
2024-06-08 17:22 - 2024-06-09 18:35 - 000000000 ____D C:\Users\Zdenek\Desktop\AN Inzerce
2024-06-07 23:12 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Desktop\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:11 - 2024-06-07 23:11 - 000487229 _____ C:\Users\Zdenek\Downloads\MS PRODEJNY DATART 2024 06_SCÉNÁŘ.pdf
2024-06-07 23:09 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Desktop\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:08 - 2024-06-07 23:08 - 000877659 _____ C:\Users\Zdenek\Downloads\MS Toyota ojeté 1H 2024.pdf
2024-06-07 23:06 - 2024-06-07 23:06 - 000056292 _____ C:\Users\Zdenek\Downloads\faktura_17177942432640_1.pdf
2024-06-07 21:45 - 2024-06-07 21:45 - 002726740 _____ C:\Users\Zdenek\Downloads\CD_Eurobond_2022_Prospectus.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000325862 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9697290934.pdf
2024-06-07 08:11 - 2024-06-07 08:11 - 000040008 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9694879179.pdf
2024-06-06 15:14 - 2024-06-06 15:14 - 000386956 _____ C:\Users\Zdenek\Desktop\VARIANTA PLÁNU KOUPELNY 2.pdf
2024-06-06 14:59 - 2024-06-06 14:59 - 000409331 _____ C:\Users\Zdenek\Downloads\MS_partnerskych_pobocek_RAKO_2024_ SCÉNÁŘ.pdf
2024-06-06 11:14 - 2024-06-06 11:14 - 000040034 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9689439792.pdf
2024-06-06 07:57 - 2024-06-06 07:58 - 000039992 _____ C:\Users\Zdenek\Downloads\Vinted-stitek-9686308142.pdf
2024-06-04 08:24 - 2024-06-04 08:14 - 000315288 _____ (Gen Digital Inc.) C:\windows\system32\aswBoot.exe
2024-06-04 08:19 - 2024-06-04 08:19 - 000039995 _____ C:\Users\Zdenek\Downloads\Vinted-S1322698025.pdf
2024-06-02 21:45 - 2024-06-02 21:45 - 000326070 _____ C:\Users\Zdenek\Downloads\Vinted-S1320462049.pdf
2024-05-31 17:19 - 2024-06-06 15:48 - 000000000 ____D C:\Users\Zdenek\Desktop\AM Inzerce
2024-05-25 09:57 - 2024-05-25 09:58 - 000049450 _____ C:\Users\Zdenek\Downloads\947053840697_1_1152_20240226.pdf
2024-05-25 08:58 - 2024-05-25 08:58 - 000074343 _____ C:\Users\Zdenek\Downloads\priloha_1351768661_0_00712303_dne_0582_2402188853_qr.pdf
2024-05-22 14:32 - 2024-05-22 14:32 - 000315679 _____ C:\Users\Zdenek\Downloads\E.ON_Retence a zálohy_052024_SCÉNÁŘ_MS.pdf
2024-05-18 20:29 - 2024-05-18 20:29 - 000039399 _____ C:\Users\Zdenek\Desktop\U7359131_20230905_20240517.pdf
2024-05-18 20:28 - 2024-05-18 20:28 - 000031950 _____ C:\Users\Zdenek\Desktop\U7359131_20220907_20230907.pdf
2024-05-18 20:27 - 2024-05-18 20:27 - 000016991 _____ C:\Users\Zdenek\Desktop\U7359131_20210908_20220908.pdf
2024-05-10 20:31 - 2024-05-10 20:31 - 000056253 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_4.pdf
2024-05-10 20:28 - 2024-05-10 20:28 - 000056413 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_3.pdf
2024-05-10 20:26 - 2024-05-10 20:26 - 000056265 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_2.pdf
2024-05-10 20:19 - 2024-05-10 20:19 - 000055393 _____ C:\Users\Zdenek\Downloads\faktura_17153651342038_1.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-06-09 23:16 - 2023-01-20 09:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-09 22:41 - 2011-06-23 14:06 - 000000000 ____D C:\Program Files (x86)\Google
2024-06-09 18:34 - 2010-10-24 23:32 - 000678066 _____ C:\windows\system32\perfh005.dat
2024-06-09 18:34 - 2010-10-24 23:32 - 000146432 _____ C:\windows\system32\perfc005.dat
2024-06-09 18:34 - 2009-07-14 07:13 - 001612724 _____ C:\windows\system32\PerfStringBackup.INI
2024-06-09 18:34 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2024-06-09 17:29 - 2015-10-12 19:50 - 000000000 ____D C:\Program Files\trend micro
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:23 - 2009-07-14 06:45 - 000022784 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2024-06-09 10:17 - 2021-04-03 10:45 - 000003682 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-06-09 10:17 - 2021-04-03 10:45 - 000003554 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-06-09 10:17 - 2015-08-01 05:36 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2024-06-09 10:17 - 2014-12-23 20:39 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2024-06-09 09:59 - 2023-09-14 07:57 - 000000000 ____D C:\Users\Zdenek\Desktop\MS2023
2024-06-09 09:38 - 2018-07-17 14:53 - 000000000 ____D C:\Users\Zdenek\AppData\Local\AVAST Software
2024-06-09 08:43 - 2013-05-30 23:16 - 000000000 ____D C:\ProgramData\AVAST Software
2024-06-09 08:43 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2024-06-08 17:24 - 2021-09-27 10:39 - 000000000 ____D C:\Users\Zdenek\Desktop\inzerce
2024-06-04 18:08 - 2013-05-30 23:18 - 000939976 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSnx.sys
2024-06-04 08:18 - 2013-05-30 23:18 - 000306744 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswVmm.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000292808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsh.sys
2024-06-04 08:17 - 2019-01-16 16:35 - 000084536 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbuniv.sys
2024-06-04 08:16 - 2020-10-23 19:19 - 000269768 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswMonFlt.sys
2024-06-04 08:16 - 2020-04-20 16:58 - 000548808 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswNetHub.sys
2024-06-04 08:16 - 2018-10-22 12:58 - 000028728 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswKbd.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000698424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswSP.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000097848 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRdr2.sys
2024-06-04 08:16 - 2013-05-30 23:18 - 000069168 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswRvrt.sys
2024-06-04 08:06 - 2019-01-16 16:35 - 000020424 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArDisk.sys
2024-06-04 08:06 - 2018-01-09 22:41 - 000229832 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswArPot.sys
2024-06-04 08:05 - 2019-01-16 21:35 - 000380360 _____ (Gen Digital Inc.) C:\windows\system32\Drivers\aswbidsdriver.sys
2024-06-01 13:44 - 2011-05-31 18:47 - 000000000 ____D C:\Users\Zdenek
2024-05-18 19:11 - 2023-07-16 20:49 - 000010111 _____ C:\Users\Zdenek\Desktop\ZIMNÍ VINTED.txt
2024-05-17 17:26 - 2023-03-15 21:42 - 000001033 _____ C:\Users\Zdenek\Desktop\dual.txt
2024-05-17 16:53 - 2020-02-16 21:16 - 000000000 ____D C:\Users\Zdenek\Desktop\Hudba 2022
2024-05-16 08:18 - 2022-10-13 21:56 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk

==================== Files in the root of some directories ========

2015-12-14 16:46 - 2021-08-31 16:02 - 000017920 _____ () C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-29 12:02 - 2014-11-29 12:02 - 000000000 ___SH () C:\Users\Zdenek\AppData\Local\LumaEmu
2024-05-07 07:49 - 2024-05-07 07:49 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
2021-12-11 22:59 - 2021-12-11 22:59 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
2022-05-27 10:35 - 2022-05-27 10:35 - 000000000 _____ () C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.06.2024
Ran by Zdenek (09-06-2024 23:53:14)
Running from C:\Users\Zdenek\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2011-05-31 16:47:34)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-535601518-2141012399-1713020722-500 - Administrator - Disabled)
Guest (S-1-5-21-535601518-2141012399-1713020722-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-535601518-2141012399-1713020722-1002 - Limited - Enabled)
Zdenek (S-1-5-21-535601518-2141012399-1713020722-1000 - Administrator - Enabled) => C:\Users\Zdenek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 24.002.20759 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
ArcSoft MediaImpression 2 (HKLM-x32\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.5.6116 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 109.0.24252.120 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (05/19/2009 4.4.0.1) (HKLM\...\92F4CDC794E6E4E29DC063D292D1C94F6FA1EA1E) (Version: 05/19/2009 4.4.0.1 - Lenovo)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.3.2.1195 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Broadcom 802.11 Wireless Driver (HKLM-x32\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon MP230 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP230_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.119.0.60 - Conexant)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
EasyCapture (HKLM-x32\...\EasyCapture4.0) (Version: V4.0.09.1015 - Lenovo)
Energy Management (HKLM-x32\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 4.4.1.3 - Lenovo)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Earth (HKLM-x32\...\{6DB7AD00-F781-11DF-9EEF-001279CD8240}) (Version: 6.0.0.1735 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
GPS Information (HKLM-x32\...\{219BB7DF-83BA-44C6-A362-D17981FBD285}) (Version: - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.41 - Irfan Skiljan)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ladicka (HKLM-x32\...\Ladicka) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.2018.19 - Lenovo EasyCamera)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.)
Lenovo ReadyComm 5 (HKLM-x32\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.20 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM-x32\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lenovo_Wireless_Driver (HKLM-x32\...\{28ABE740-47F3-441B-9437-852F6A64EFF8}) (Version: 1.02.01 - Lenovo)
Map Explorer 9 9.0.39-1 (HKLM-x32\...\MapExplorer9_is1) (Version: 9.0.39-1 - MapFactor)
Media Player Codec Pack 4.3.9 (HKLM-x32\...\Media Player - Codec Pack) (Version: 4.3.9 - Media Player Codec Pack)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (CSY) (HKLM\...\{3C38CA01-7933-31E7-A1F6-EAA1DF9BEDF3}) (Version: 4.6.01055 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{09CCBE8E-B964-30EF-AE84-6537AB4197F9}) (Version: 4.7.03062 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Antimalware Service CS-CZ Language Pack (HKLM\...\{17CA32D1-73BD-4990-B8F6-369D8D34B05D}) (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (HKLM\...\{DC911ADF-7B60-40F2-A112-FB1EB6402D07}) (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 113.0.2 (x64 cs)) (Version: 113.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 113.0.2.8542 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Navigator 9 9.0.39-1 (HKLM-x32\...\PCNavigator9_is1) (Version: 9.0.39-1 - MapFactor)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC)
Plague Inc Evolved (HKLM-x32\...\Plague Inc Evolved_is1) (Version: 0.7.5.1 - Decepticon)
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d4 - CyberLink Corp.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3600 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3600 series) (Version: - ‭Canon Inc.)
Registrace uživatele zařízení Canon MP230 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP230 series) (Version: - Canon Inc.‎)
Setup Utility 9 (HKLM-x32\...\MAPFACTOR_SETUP_UTILITY_9_is1) (Version: 1.0 - MapFactor)
Unity Web Player (HKU\S-1-5-21-535601518-2141012399-1713020722-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
Windows Live Communications Platform (HKLM-x32\...\{D45240D3-B6B3-4FF9-B243-54ECE3E10066}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Fotogalerie (HKLM-x32\...\{FB79FDB7-4DE1-453D-99FE-9A880F57380E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{1B8ABA62-74F0-47ED-B18C-A43128E591B8}) (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{0B0F231F-CE6A-483D-AA23-77B364F75917}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (HKLM\...\{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{9D56775A-93F3-44A3-8092-840E3826DE30}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C454280F-3C3E-4929-B60E-9E6CED5717E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C66824E4-CBB3-4851-BB3F-E8CFD6350923}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{80E8C65A-8F70-4585-88A2-ABC54BABD576}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{A0C91188-C88F-4E86-93E6-CD7C9A266649}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (HKLM-x32\...\{DECDCB7C-58CC-4865-91AF-627F9798FE48}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (HKLM-x32\...\{50300123-F8FC-4B50-B449-E847D04F1BA2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{80956555-A512-4190-9CAD-B000C36D6B6B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{DA54F80E-261C-41A2-A855-549A144F2F59}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{19BA08F7-C728-469C-8A35-BFBD3633BE08}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{92EA4134-10D1-418A-91E1-5A0453131A38}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{78906B56-0E81-42A7-AC25-F54C946E1538}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{D436F577-1695-4D2F-8B44-AC76C99E0002}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{3336F667-9049-4D46-98B6-4C743EEBC5B1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{34F4D9A4-42C2-4348-BEF4-E553C84549E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (HKLM\...\{DF6D988A-EEA0-4277-AAB8-158E086E439B}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{3921492E-82D2-4180-8124-E347AD2F2DB4}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (HKLM\...\{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (HKLM\...\{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (HKLM\...\{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{682B3E4F-696A-42DE-A41C-4C07EA1678B4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{200FEC62-3C34-4D60-9CE8-EC372E01C08F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{4264C020-850B-4F08-ACBE-98205D9C336C}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A726AE06-AAA3-43D1-87E3-70F510314F04}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAF454FC-82CA-4F29-AB31-6A109485E76E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{AB78C965-5C67-409B-8433-D7B5BDB12073}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] () [File not signed]
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2009-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-06-04] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\windows\system32\ff_vfw.dll [127488 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-05-28] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-12-05] () [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2014-04-08] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3525120 2014-11-16] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [216064 2013-12-17] () [File not signed]
HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-17] (Packed With Joy !) [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-07-12 14:22 - 2019-07-12 14:22 - 000016384 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\57404270395de352ac6a365c479a4305\PSIClient.ni.dll
2023-06-29 22:09 - 2015-01-09 08:45 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_CSY.DLL
2023-06-29 22:09 - 2015-01-09 08:44 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2020-05-08 15:17 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\windows\System32\CNMN6PPM.DLL
2019-07-12 14:22 - 2019-07-12 14:22 - 000020992 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\1e1b33afacd8df7000356690de260f82\IAStorCommon.ni.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000467456 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2013-01-03 23:21 - 2012-11-19 13:13 - 000269824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000073216 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMgr\23e6d4139f7873755107e0eb9dd109b7\IAStorDataMgr.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000363520 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\8fc4aed41432ad73a703ce226b5f065a\IAStorUtil.ni.dll
2019-07-12 14:23 - 2019-07-12 14:23 - 001076224 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorViewModel\ccd9ade906d5a97d42fa9b4a87403833\IAStorViewModel.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 003713536 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PSI\9fb44e7de27d31898ca10bc69922a31b\PSI.ni.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000625152 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\PsiData\e04aaa9f4b7ab0f6bc5f0ea72ed34b5d\PsiData.ni.dll
2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2013-05-30 23:18 - 2013-05-30 23:18 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\MSVCP140.dll
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\ucrtbase.DLL
2021-11-13 09:01 - 2021-11-13 09:01 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140.dll
2024-06-09 18:30 - 2024-06-09 18:30 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\AVAST Software\Avast\defs\24060904\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-07-12 14:22 - 2019-07-12 14:22 - 000027136 _____ (Microsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\bab48af25f89a402870b763385ac1697\IAStorDataMgrSvcInterfaces.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2024-06-09 17:29 - 000000828 _____ C:\windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-535601518-2141012399-1713020722-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CFA8CC00-5D2D-47B2-81E6-EFDD256381B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DD4656B-E8A5-4C75-A674-DD7752873748}] => (Allow) LPort=2869
FirewallRules: [{1C8F54E1-C1A9-4FC6-B044-F9B12F4EAA1C}] => (Allow) LPort=1900
FirewallRules: [{B41F6CBE-D9C6-496A-94E4-0948723AE97C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{45B061D7-3671-40F0-94D4-922190591A11}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{596B635D-00D4-40B7-A472-4A1234235631}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7230BDC5-9F57-4FDD-B2D8-EF8D7E379D8D}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{F11F979F-CD2B-42BA-A16D-B21CC7DA1CB2}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{893C7404-EA53-4836-B6A8-7E538753DCBF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{D93458A2-EB2C-43EB-A769-9433154AE3CB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{0FB0DC5C-7A67-4DBA-B791-E76B25588CAB}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{FD91D051-8AA9-4A39-951C-CFD2125817EF}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{200D6F7C-722C-4B33-91C2-F48C1C7D33DC}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{7D3CFB67-F0D8-46F4-9296-557ECBB4F1C5}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [{B47B4572-693A-4B0D-8691-81D076134CC4}] => (Allow) C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited)
FirewallRules: [TCP Query User{F7719C56-0E6A-4E15-ADFD-1D9099080F95}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [UDP Query User{AD775C85-6CE9-442F-BC0C-F7B9ED859EF1}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe (Google) [File not signed]
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [{7B238D2B-FBBB-4D8A-810B-22D78D7C96BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{985A1AB7-8868-428A-81AC-A1E3F2F6A7FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A7C33224-C2A8-4D7F-8DD9-71EF8C4CEFFF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B8B843CA-B764-4A93-BE7C-2419C24A9BD4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3A6C22CE-831C-4CAD-97AB-76944A370BBE}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{868A2FD5-10C8-44ED-B033-E1F11A1BEE6A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{17CB8387-CE93-4E90-9168-FCBED0B734F8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{7E5706A1-9FF9-4EBA-BDD8-000F555326EB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{68DCDDE6-6E53-430C-BF6D-7742A54917FD}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

19-05-2024 12:29:16 Naplánovaný kontrolní bod
01-06-2024 12:24:39 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x3dc
Čas spuštění chybující aplikace: 0x01dab5739e9566b4
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa95e345-2172-11ef-9ccc-0008742d9318

Error: (06/03/2024 08:31:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02c27584
ID chybujícího procesu: 0x7b8
Čas spuštění chybující aplikace: 0x01dab5739bc68721
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fa912085-2172-11ef-9ccc-0008742d9318

Error: (06/01/2024 11:06:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0x15d8
Čas spuštění chybující aplikace: 0x01dab467583a68f0
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ddc2e1f8-205a-11ef-9617-0008742d9318

Error: (05/31/2024 05:37:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DllHost.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bca54
Název chybujícího modulu: PhotoViewer.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c958
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008682
ID chybujícího procesu: 0xdcc
Čas spuštění chybující aplikace: 0x01dab36ffee9b3db
Cesta k chybující aplikaci: C:\windows\system32\DllHost.exe
Cesta k chybujícímu modulu: C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
ID zprávy: ae3215b3-1f63-11ef-a1b4-0008742d9318

Error: (05/29/2024 06:41:56 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování nebylo dokončeno, protože došlo k chybě při zápisu do umístění zálohy D:\. Chyba: Umístění zálohy nebylo nalezeno nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).

Error: (05/24/2024 10:29:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: armsvc.exe, verze: 1.824.460.1067, časové razítko: 0x65baa4f7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x6f8
Čas spuštění chybující aplikace: 0x01daadf7b8c211ff
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40cbbad9-1a0c-11ef-9c1e-0008742d9318

Error: (05/24/2024 10:28:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ACService.exe, verze: 1.1.0.47, časové razítko: 0x4ba1976d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x02d67584
ID chybujícího procesu: 0x7e8
Čas spuštění chybující aplikace: 0x01daadf7b5ff194e
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3fd68d1c-1a0c-11ef-9c1e-0008742d9318

Error: (05/22/2024 02:46:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroRd32.exe, verze: 24.2.20759.0, časové razítko: 0x663fccd4
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24499, časové razítko: 0x5d011861
Kód výjimky: 0xc000000d
Posun chyby: 0x00094d4a
ID chybujícího procesu: 0x1148
Čas spuštění chybující aplikace: 0x01daac4435d61c38
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Cesta k chybujícímu modulu: C:\windows\SysWOW64\ntdll.dll
ID zprávy: 478bbf69-1839-11ef-9783-0008742d9318


System errors:
=============
Error: (06/10/2024 12:10:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/09/2024 04:34:17 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NlaSvc bylo dosaženo časového limitu (30000 ms).

Error: (06/09/2024 02:09:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby SysMain bylo dosaženo časového limitu (30000 ms).

Error: (06/09/2024 09:14:05 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/09/2024 09:00:33 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo časového limitu (30000 ms).

Error: (06/09/2024 08:50:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).

Error: (06/09/2024 08:50:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (06/09/2024 08:49:56 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================Event[0]:

Date: 2015-10-15 19:41:25.202
Description:
Funkce Ochrana v reálném čase u prohledávání Windows Defender zjistila chybu a selhala.
Funkce:Při přístupu
Kód chyb:0x80070013
Popis chyby:Médium je chráněno proti zápisu.
Důvod:Sledování v reálném čase přestalo fungovat z neznámého důvodu. Proveďte obnovení restartováním služby.

==================== Memory info ===========================

BIOS: LENOVO 18CN46WW(V2.55) 05/21/2010
Motherboard: LENOVO NITU1
Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 91%
Total physical RAM: 2008.6 MB
Available physical RAM: 166.08 MB
Total Virtual: 5767.76 MB
Available Virtual: 456.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:421.37 GB) (Free:52.33 GB) (Model: ATA WDC WD5000BEVT-2 SCSI Disk Device) NTFS

\\?\Volume{27adc0ef-f9ba-11df-81cd-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: B40280FB)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=428 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.7 GB) - (Type=12)

==================== End of Addition.txt =======================

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 10 čer 2024 08:18
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 10 čer 2024 18:02
od pikoslav
Fix result of Farbar Recovery Scan Tool (x64) Version: 09.06.2024
Ran by Zdenek (10-06-2024 18:10:05) Run:1
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {32F60845-750A-4AB1-A1DB-0C8FAC1BCD03} - System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {1FBB26FE-2F64-4C5A-B686-BE742EDB8062} - System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {73311A13-9A08-45AC-80BF-F1D365AA0716} - System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => C:\Program Files (x86)\GPS Information\GpsInfo.exe [86016 2006-03-29] () [File not signed]
Task: {00D58283-9374-41F6-985F-B222190F0DC2} - System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => C:\Users\Zdenek\Desktop\PlagueIncEvolved.exe (No File)
Task: {84E2679E-FA8E-4BC2-83FC-31020EE3AD12} - System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => C:\Program Files (x86)\AutoMapa EU\tpcAm.exe (No File)
Task: {0A80E4D0-2F74-4166-BFEB-0296495A96A5} - System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => C:\Users\Zdenek\Desktop\tpcAm.exe (No File)
Task: {F482A416-DA56-4913-8BBE-D38E8EA6C442} - System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => C:\Users\Zdenek\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe (No File)
Task: {464843C7-00A5-4D44-B87D-FAB0962E5571} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A78C7B8B-6293-4C4C-A678-8478BD26378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
Task: {7C61DFAE-C72C-41DF-8936-3D0E039977B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-03] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
U3 BcmSqlStartupSvc; no ImagePath
U2 IviRegMgr; no ImagePath
U2 RichVideo; no ImagePath
U3 SQLWriter; no ImagePath
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483}
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73}
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40}
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6}
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E}
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Zdenek\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{A4D439BA-F154-41CD-8F63-5F2E50008E8D}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}] => (Allow) C:\windows\System32\IgrsSvcs.exe => No File
FirewallRules: [TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe => No File
FirewallRules: [{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe => No File
FirewallRules: [TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe => No File
FirewallRules: [UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe => No File
FirewallRules: [{AF820838-6A45-4C28-A699-F60EC275E4B3}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{F4756313-A293-44C3-862C-F53481BE4ABC}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{74F5FF56-BC99-4A6A-B6B8-609066A66775}] => (Allow) C:\Users\Zdenek\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32F60845-750A-4AB1-A1DB-0C8FAC1BCD03}" => removed successfully
C:\windows\System32\Tasks\{1227B2A0-E12B-495C-B9DB-75F431BAE420} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1227B2A0-E12B-495C-B9DB-75F431BAE420}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FBB26FE-2F64-4C5A-B686-BE742EDB8062}" => removed successfully
C:\windows\System32\Tasks\{5DEA549E-B934-4572-A25A-7BB4C3591383} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5DEA549E-B934-4572-A25A-7BB4C3591383}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73311A13-9A08-45AC-80BF-F1D365AA0716}" => removed successfully
C:\windows\System32\Tasks\{61336800-4408-4CB9-B939-0BCDFB779EAA} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{61336800-4408-4CB9-B939-0BCDFB779EAA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00D58283-9374-41F6-985F-B222190F0DC2}" => removed successfully
C:\windows\System32\Tasks\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6EA9BA0E-F2F2-46A3-BDBA-8450087CF054}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84E2679E-FA8E-4BC2-83FC-31020EE3AD12}" => removed successfully
C:\windows\System32\Tasks\{70CEF507-187E-46C6-9DBC-D2061B8F62BC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{70CEF507-187E-46C6-9DBC-D2061B8F62BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A80E4D0-2F74-4166-BFEB-0296495A96A5}" => removed successfully
C:\windows\System32\Tasks\{ABBCC82A-5F5B-4B0F-987D-910D58163711} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ABBCC82A-5F5B-4B0F-987D-910D58163711}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F482A416-DA56-4913-8BBE-D38E8EA6C442}" => removed successfully
C:\windows\System32\Tasks\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B2BF4B5E-1016-4A92-B08D-86982B6F39FE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{464843C7-00A5-4D44-B87D-FAB0962E5571}" => removed successfully
C:\windows\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A78C7B8B-6293-4C4C-A678-8478BD26378F}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C61DFAE-C72C-41DF-8936-3D0E039977B0}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\BcmSqlStartupSvc => removed successfully
BcmSqlStartupSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\IviRegMgr => removed successfully
IviRegMgr => service removed successfully
HKLM\System\CurrentControlSet\Services\RichVideo => removed successfully
RichVideo => service removed successfully
HKLM\System\CurrentControlSet\Services\SQLWriter => removed successfully
SQLWriter => service removed successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Zdenek\AppData\Local\{43AE1A02-DDC8-4E1D-803C-235ED77CB483} => moved successfully
C:\Users\Zdenek\AppData\Local\{5FDEAFF9-9511-4894-8CDE-8F83BC1A2F73} => moved successfully
C:\Users\Zdenek\AppData\Local\{7B408D65-F254-4352-AF89-391A72695C40} => moved successfully
C:\Users\Zdenek\AppData\Local\{9A15576E-7B00-478F-86EB-060E7E55BBE6} => moved successfully
C:\Users\Zdenek\AppData\Local\{CF16B6D4-86A2-4902-A16A-5560675B132E} => moved successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9} => removed successfully
HKU\S-1-5-21-535601518-2141012399-1713020722-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF} => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A4D439BA-F154-41CD-8F63-5F2E50008E8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FED71531-9B11-4BBF-B4A0-6F51B657F2FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D70F0DBE-4F6A-4796-A49E-0B4415D5E22A}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0399AE31-8AB2-4EE4-8C51-69E48EB49595}C:\program files (x86)\java\jre7\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BD38FBF-0D56-4332-BD5A-D5590A56D4AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78323196-9B3F-4F72-8DA1-8F66EA86E9FA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{37DA0739-4552-445C-94CF-F06AF663F6EB}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B2F493D-5F28-469E-9D31-F523B55B2C32}C:\users\zdenek\downloads\beamng-drive-0.3.8.3-(by-t.)\beamng drive 0.3.8.3\beamng.drive\bin64\beamng.drive.x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52E6E59C-9C7F-463D-97FB-99709B4A9C07}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A825216D-2F2A-4FF6-9A5D-54CC8834650A}C:\games\world_of_tanks\wotlauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7FB27DBB-B477-4A69-BACF-13C5FBD0EF11}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{31018706-688D-4088-BBAD-0A32AB345F4A}C:\games\world_of_tanks\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B1BBDB2-E496-4A8D-8F50-1DC62EBC562E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{225015CE-0348-4FD0-B21D-7B018D86925E}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5786377-9CEF-491D-84C3-C28FC189222B}C:\users\zdenek\appdata\local\google\chrome\application\chrome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF820838-6A45-4C28-A699-F60EC275E4B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F4756313-A293-44C3-862C-F53481BE4ABC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74F5FF56-BC99-4A6A-B6B8-609066A66775}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DA601831-CA6A-4ECF-A3E3-BEA8610E2E2E}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{42EB7496-0BCE-4DD7-B907-2BDB5BFCC225}C:\users\zdenek\appdata\local\microsoft\teams\current\teams.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 48490444 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1247182590 B
Edge => 0 B
Chrome => 1088295216 B
Firefox => 1155413287 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 33058 B
Public => 33058 B
ProgramData => 33058 B
systemprofile => 66244 B
systemprofile32 => 3941753 B
LocalService => 4073997 B
NetworkService => 5360137 B
Zdenek => 3779615644 B

RecycleBin => 24726214065 B
EmptyTemp: => 29.9 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-06-2024 18:44:39)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 18:44:39 ====

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 10 čer 2024 18:54
od Rudy
Smazáno. Zlepšilo se načítání?

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 10 čer 2024 22:49
od pikoslav
Děkuji, ale jen minimálně, stále první načtení Google Chrome trvá skoro 5 minut.
Ale jak jste kdysi psal, nejde udělat Ferrari z Trabanta........

Re: prosím o kontrolu logu, velmi pomalé první načítání

Napsal: 11 čer 2024 08:08
od Rudy
To sice nejde, ale ještě můžete zkusit defragmentovat disk.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz